|
Websense Email Security / Personal Email Manager Multiple Vulnerabilities
|
|
Secunia Advisory:
|
SA37091
|
|
|
Release Date:
|
2009-10-21
|
|
Last Update:
|
2009-11-09
|
|
Popularity:
|
640 views
|
|
|
Critical:
|
Moderately critical
|
|
Impact:
|
Cross Site Scripting
DoS
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | Websense Email Security 7.x
Websense Personal Email Manager 7.x
|
|
|
Secunia CVSS-2 Score:
|
Available in Secunia business solutions 
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities
|
|
| Advisory Content (Page 1 of 3) | [ 1 ] [ 2 ] [ 3 ] | |
|
Description:
Nikolas Sotiriu has reported some vulnerabilities in Websense Email Security and Personal Email Manager, which can be exploited by malicious people to cause a DoS (Denial of Service) and conduct cross-site scripting and script insertion attacks.
1) An error within the handling of HTTP requests within the Web Administrator frontend (STEMWADM.EXE) can be exploited to crash the service by sending HTTP GET requests to the port 8181 and then closing the socket.
Note: By default, the service is restarted.
2) Input passed to the "FileName", "IsolatedMessageID", "ServerName", "Dictionary", "Scoring", and "MessagePart" parameters in web/msgList/viewmsg/actions/msgAnalyse.asp, to the "Queue", "FileName", "IsolatedMessageID", and "ServerName" parameters in web/msgList/viewmsg/actions/msgForwardToRiskFilter.asp and web/msgList/viewmsg/viewHeaders.asp is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.
3) Input passed via the email subject is not properly sanitised before being displayed. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site when a specially crafted email is shown in the Web Administrator frontend.
The vulnerabilities are reported in Websense Email Security version 7.1 and Personal Email Manager version 7.1. Other versions may also be affected.
Change Page:
[ 1 ] [ 2 ] [ 3 ]
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
