Title: Websense Enterprise Blocked Sites Cross-Site Scripting Vulnerability
Severity: MODERATE
Description:
Websense Enterprise is a filtering software that allows access to be restricted to web sites, instant messaging and peer-to-peer networks.
When a blocked site is visited through Websense, the software will display an error page that includes the URI of the blocked site that the user attempted to access. HTML and script code are not sufficiently sanitized from the URI before it is displayed in the error page, making the software prone to cross-site scripting attacks. An attacker could exploit this issue by enticing a user to follow a malicious link to a site that has been blocked by Websense.
This could allow for theft of cookie-based authentication credentials. Since an attacker can control how the page will be rendered to the user visiting the link, other attacks are also possible. Considering the nature of the software, an attacker could exploit this issue to redirect the user to a site that is posing as a blocked site as well, since an attack could easily be engineered which could cause the user to believe they are visiting a site that has been blocked by the software.
Affected Products:
- Websense Websense Enterprise 4.3.0
- Websense Websense Enterprise 4.4.0
- Websense Websense Enterprise 5.0.01
- Websense Websense Enterprise 5.1.0
References:
- Websense: Websense Homepage
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
