Scripts4webmasters.com TRACKtheCLICK Script Injection Vulnerabilities
Discovered By Chris Rahm (aka: BrainRawt) (brainrawt (at) haxworx (dot) com [email concealed])
About TRACKtheCLICK:
--------------------
A perl coded CGI that tracks your email, ezine, banner, and web site
links. TRACKtheCLICK outputs log information to a data file that in
return is viewable in an organized HTML format through the use of
another CGI called admin.cgi.
TRACKtheCLICK can be downloaded from the following address.
Vulnerability:
----------------
Due to a lack of filtering in click.cgi, scalars $agent and $referer are
vulnerable to script injection. An individual can inject malicious code
to the data file by spoofing their User-Agent: and/or Referer:. When the
data file is opened by admin.cgi, the injected code will be executed by
that persons browser.
Discovered By Chris Rahm (aka: BrainRawt) (brainrawt (at) haxworx (dot) com [email concealed])
About TRACKtheCLICK:
--------------------
A perl coded CGI that tracks your email, ezine, banner, and web site
links. TRACKtheCLICK outputs log information to a data file that in
return is viewable in an organized HTML format through the use of
another CGI called admin.cgi.
TRACKtheCLICK can be downloaded from the following address.
http://www.scripts4webmasters.com/clicktracking/index.shtml
Vulnerable Version:
-------------------
Version 1.0
Vendor Contact:
----------------
10-5-03 - Emailed webmaster (at) scripts4webmasters (dot) com [email concealed]
10-10-03 - No Response
Vulnerability:
----------------
Due to a lack of filtering in click.cgi, scalars $agent and $referer are
vulnerable to script injection. An individual can inject malicious code
to the data file by spoofing their User-Agent: and/or Referer:. When the
data file is opened by admin.cgi, the injected code will be executed by
that persons browser.
------------------------------------------------------------------------
--
[ reply ]