Title: ACME Labs thttpd Cross-Site Scripting Vulnerability
Severity: HIGH
Description:
thttpd is a web server product maintained by ACME Labs. thttpd has been compiled for Linux, BSD and Solaris, as well as other Unix like operating systems.
It is possible for attackers to construct urls that will cause scripting code to be embedded in error pages.
thttpd fails to check URLs for the presence of script commands when generating error pages, allowing attacker supplied code to execute. As a result, when an innocent user follows such a link, the script code will execute within the context of the hosted site.
Successful exploitation of this vulnerability could enable an attacker to execute code in the security context of a trusted site. In addition, this issue could allow an attacker to access the trusted site's cookies, possibly aiding in other web-based attacks.
It should be noted that this issue was tested on 2.20b, other versions may also be affected by this issue.
Affected Products:
- Acme thttpd 2.20.0b
- Acme thttpd 2.20.0c
- Conectiva Linux 9.0.0
- S.u.S.E. Linux 7.3.0
- S.u.S.E. Linux 8.0.0
References:
- Acme: Acme software thttpd
- frog frog: 5 Holes, Part 1
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
