[27797] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Zeus Admin Server v4.1r2 index.fcgi XSS bug

daemon@ATHENA.MIT.EDU (euronymous)
Sat Nov 9 12:46:33 2002

Date: 	Fri, 8 Nov 2002 22:39:24 +0300 (MSK)
From: "euronymous" <just-a-user@yandex.ru>
Reply-To: just-a-user@yandex.ru
Message-Id: <3DCC12EC.000005.12196@ariel.yandex.ru>
MIME-Version: 1.0
Errors-To: just-a-user@yandex.ru
To: bugtraq@securityfocus.com
Content-Type: text/plain;
  charset="US-ASCII"
Content-Transfer-Encoding: 7bit

=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=
topic: Zeus Admin Server v4.1r2 index.fcgi XSS bug
product: Zeus Admin Server v4.1r2 for linux/x86
vendor: http://www.zeus.co.uk
risk: very low (authorisation required)
date: 11/8/2k2
discovered by: euronymous /F0KP /HACKRU Team
advisory urls: http://f0kp.iplus.ru/bz/007.txt 
               http://xakep.host.sk/bz/007.txt 
=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=
	      
description
-----------
in default Zeus installation, you can to access
management interface via http://hostname:9090. 

[you have to enter correct login/password here]

there is some general script, that contain xss bug. 
btw, default management login is `admin'..

sample attack
-------------
http://hostname:9090/apps/web/index.fcgi?servers=
&section=<script>alert(document.cookie)</script>

[it must be in a single string]

shouts: HACKRU Team, DHG, Spoofed Packet, all russian security guyz 
fuck_off: slavomira and other dirty ppl in *.kz

================
im not a lame,
not yet a hacker
================


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[27797] in bugtraq

Zeus Admin Server v4.1r2 index.fcgi XSS bug

daemon@ATHENA.MIT.EDU (euronymous)Sat Nov 9 12:46:33 2002

daemon@ATHENA.MIT.EDU (euronymous)
Sat Nov 9 12:46:33 2002