Title: Sphera HostingDirector VDS Control Panel Multiple Cross-Site Scripting Vulnerabilities
Severity: MODERATE
Description:
Sphera HostingDirector is software designed to provide centralized administration of a dedicated environment. ServerDirector/Virtual Dedicated Server(VDS) technology is a component that is shipped with HostingDirector; it is designed to simulate multiple virtual dedicated servers on a single system.
Sphera HostingDirector VDS Control Panel has been reported prone to several cross-site scripting attacks. The vulnerabilities exist due to insufficient sanitization of user-supplied input for certain URI parameters.
Specifically, the 'uid', 'error' and 'vds_ip' URI parameters, of the login_screen.php and sm_login_screen.php scripts, are not sanitized of malicious HTML code.
An attacker can exploit this by crafting a link that includes malicious HTML code. If a web user follows a malicious link to a site hosting the vulnerable software that includes hostile HTML or script code. This code would be executed in the context of the site hosting the software.
Successful exploitation could permit theft of cookie-based authentication credentials from legitimate users of the HostingDirector Control Panel, which may in turn permit unauthorized access to resources that are managed by the software. Other attacks may also be possible.
Affected Products:
- Sphera HostingDirector 1.0.0
- Sphera HostingDirector 2.0.0
- Sphera HostingDirector 3.0.0
References:
- Sphera: HostingDirector Homepage
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
