|
|
|
|
FortiOS Log File Cross Site Scripting
|
|
Secunia Advisory:
|
SA9932
|
|
|
Release Date:
|
2003-10-03
|
|
Last Update:
|
2003-11-13
|
|
Popularity:
|
5,265 views
|
|
|
Critical:
|
Moderately critical
|
|
Impact:
|
Cross Site Scripting
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| OS: | Fortinet FortiOS (FortiGate) 2.x
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities 
|
|
Description:
Multiple vulnerabilities have been identified in FortiOS allowing malicious people to conduct Cross Site Scripting attacks.
The problem is that URLs, which are blocked by FortiGate, are logged unfiltered and displayed unfiltered in the admin interface. This allows malicious people to conduct Cross Site Scripting attacks against the administrative interface.
Various scripts in the administrative interface are also vulnerable to trivial Cross Site Scripting attacks.
The username and the MD5 hash of the password is stored in a cookie. This is not a vulnerability, but is inapproriate way of authenticating users.
The vulnerabilities have been reported to affect versions below OS 2.50 MR4.
Solution:
The Cross Site Scripting vulnerability has been reported to be fixed in version OS 2.50 MR4.
http://support.fortinet.com/
The two unspecified vulnerabilities have not been fixed yet.
To protect against these vulnerabilities you should administrate FortiGate from a system, which isn't connected to the Internet.
Provided and/or discovered by:
Maarten Hartsuijker
Changelog:
2003-11-13: Updated description.
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
19th Nov, 2008
|
New advisories:
|
9 |
|
New vulnerabilities:
|
26 |
|
Updated advisories:
|
61 |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
18th Nov, 2008
|
New advisories:
|
27 |
|
New vulnerabilities:
|
38 |
|
Updated advisories:
|
26 |
|
|
|
|
 Solutions | More...
|
|
|
|
Send Feedback to Secunia
|
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
|
|
|
|
|
|
|
