BugTraq
CVE-2015-5379: Axigen XSS vulnerability for html attachments Jul 21 2015 10:38AM
Ioan Indreias (ioan indreias axigen com)
CVEID: CVE-2015-5379

SUBJECT: Axigen XSS vulnerability for html attachments

DESCRIPTION: Axigen's WebMail Ajax interface implements a view
attachment function that executes javascript code that is part of email
HTML attachments.
This allows a malicious user to craft email messages that could expose
an Axigen WebMail Ajax user to cross site scripting or other attacks
that rely on arbitrary javascript code running within a trusted domain.

Axigen versions starting with 9.0 address this issue by limiting the
attachment types that are loaded in the browser.
For earlier Axigen versions patches are available on the Axigen support
channel.

Affected Products and Versions: Axigen Mail Server [1] 8.x versions

Vendor Internal ID: AXI-CVE-20150601

Vendor security advisory : [2]

Reported by: An anonymous researcher working with Beyond Security's
SecuriTeam Secure Disclosure program [3]

[1] https://www.axigen.com
[2]
https://www.axigen.com/knowledgebase/Ajax-WebMail-8-x-security-patch-CVE
-2015-5379-_341.html
[3] http://www.beyondsecurity.com/ssd.html

0? *?H?÷
 ?0?10
 `?He0? *?H?÷
 ? r0?40? 0
 *?H?÷
0}1 0 UIL10U

StartCom Ltd.1+0)U "Secure Digital Certificate Signing1)0'U StartCom Certification Authority0
071024210155Z
171024210155Z0?1 0 UIL10U

StartCom Ltd.1+0)U "Secure Digital Certificate Signing1806U/StartCom Class 1 Primary Intermediate Client CA0?"0
 *?H?÷
?0?
?Ç ?ÌÎ-ر)¤.«?¾?2??¦?A?UG­Ôoêê¿#Gá
ï?B|N?D¢§»ÌÏRpºM-²õB?¥=oí?Í-êweÑ5¹JÿQpa>O??.Û#??âêÂû.Ïßý_µ<¡ÆüV?ÿ

[~â*»?*ÌpØz¨?~Æ3¡WåGÍ.á?????ÍMl?r[<CÏe¡6û«Èf?þ¿qàö¹?×õO?é"?uÆÐ
xf«WN?#uù¯ýi¹­ÅcÂgkÿãv$²®´?Lb¤%æëýÿáæßy??`¬ÍØÿØ_×{`ý?óxK'G±N§ë?
£?­0?©0Uÿ0ÿ0Uÿ0USrí??àÚË\|~?5Nò
Ô¸Q?0U#0?N ï¤@[¥i?0Ê4hCÐA®ò0f+Z0X0'+0?http:
//ocsp.startssl.com/ca0-+0?!http://www.startssl.com/sfsca.crt0[
UT0R0' % #?!http://www.startssl.com/sfsca.crl0' % #?!http://crl.star
tssl.com/sfsca.crl0?U y0w0u +µ70f0.+"http://www.startssl.com/policy.pdf04
+(http://www.startssl.com/intermediate.pdf0
 *?H?÷
?
?}x«,\¸c?^®¹#wM¡qØ}?¼>UK/ú­^yÛX֏y ÷ ?ð¨fÊrMIŲéB6Û1ymQó¸??ÆҨݬZ?µ¶0?¶?&äø;½@ú?#13qÛ??& åÈÌ¢?öÔò?ûo? 6Ørú?_?;­GO>*Iô(  74·?ä¹XS1r3¹?)!úÇ?ºy²®6Ko²þ¡ÄtË?#
_Ïw?SÝrÒôâ¦
ÿ;¾B
AÃDp?(fÏôs?ÏÛ÷½ áíä°·6%??¯¬±.W0J3?:b?Cô<·8t X»Ò¹1?<øüCÓänñ=°?Ïìãt==äwS?¨âT?º¾?êú~?ÔÐ\ñwkBðfº|1?ïµ5¸¾ÓzU?æP)±°(
?º?Iôéj?ÅVBø?!?øÑÒOfI=b?Íbé\4?-*em?/нSJm¾7çËNú?ÎíÃ[?]'þª@Ú½¦ù D9
?Kr>ù£ªR?é7/¸ñ?|?oõãì^I@ÆÙ¼'±?Pa$ z?ä9ìa'Lò)??(
¼IÝó}võöc H]ÕÛ¸¨D¦ãýÂ*ì?Wº}
mæ>QÓ»ØÆ|?C.Õ(,?lÌÎQâ0?60? µË0
 *?H?÷
 0?1 0 UIL10U

StartCom Ltd.1+0)U "Secure Digital Certificate Signing1806U/StartCom Class 1 Primary Intermediate Client CA0
150715025927Z
160715101804Z0L1!0U ioan.indreias (at) axigen (dot) com1 [email concealed]'0% *?H?÷
 ioan.indreias (at) axigen (dot) com0 [email concealed]?"0
 *?H?÷
?0?
?¹!¶ ?qa@YíÛW7¯x V®Î?»À%èHâ>ê?\Ôð|Wf¬ĵöÿ_¹¡þw/(Î?V!öö^3 ??äÐ\¢ü%W?LBe ÊpI?ûÎ4³\:vk:??";SS?eÚ?Yð±ø)¾¾ÞÏÛê_äÓÈ"Çì.¥??ÆzÊbHSb óþ6Ú(cÝuDíÿÙÔõ s?wëfBNÿ¾*?#HÒy'íñÆ?MÀ+¡?½)±R?yY®T¿Ë«HÚÄÅÔ'4
'=$¿|?£2?X®Ê?tè=«PÆQ?²8Ó@R¨?`¡£?Þ0?Ú0 U00 U°0U%0++0U« ÙÆMo&yë
$~lr`pAféð0U#0?Srí??àÚË\|~?5NòÔ¸Q?0#U0ioan.indreias@a
xigen.com0?LU ?C0??0?; +µ70?*0.+"http://www.startssl.com/polic
y.pdf0÷+0ê0' StartCom Certification Authority0¾This certificate was issued according to the Class 1 Validation requirements of the StartCom CA policy, reliance only for the intended purpose in compliance of the relying party obligations.06U/0-0+ ) '?%http://crl.startssl.com/crtu1-crl.crl0?
+009+0?-http://ocsp.startssl.com/sub/class1/client/c
a0B+0?6http://aia.startssl.com/certs/sub.class1.client.ca.crt0#
U0?http://www.startssl.com/0
 *?H?÷
 ??Bûèj??ñ?JÆ9µ´Á
º~<xÒ?79Ñß?Ö(J?Ô±r??p$t?DËÒ^Â?O?ºý?²iåïõf+VÂê Äp¤¢gú/pÔ¨5RPg÷{ ×¥Ý/?Iï?ç°Púõ}I¼[:R?µmÍ@*?s?%?,i,zJ??Ü
«ÀbízT??0.nýþX?»¬F¹yÈä=ÛX8¤øfï???Q?a?ïº?sþ"?ÞMUå~ð:õ3??k?¦²T?8
*Çøý[tòvßÖÆ9´?
ùx?¹óþÌ09'è?ì?43ü8>ª.Z¼~} ¨?¸¦/1?í0?é0?0?1 0 UIL10U

StartCom Ltd.1+0)U "Secure Digital Certificate Signing1806U/StartCom Class 1 Primary Intermediate Client CAµË0
 `?He ?)0 *?H?÷
 1  *?H?÷
0 *?H?÷
 1
150721103847Z0/ *?H?÷
 1" /0¯Kñ(¢@d÷íq0-X $?%ÿ?Þ*L^?ÔD0l *?H?÷
 1_0]0  `?He*0  `?He0
*?H?÷
0*?H?÷
?0
*?H?÷
@0+0
*?H?÷
(0¥ +?71?0?0?1 0 UIL10U

StartCom Ltd.1+0)U "Secure Digital Certificate Signing1806U/StartCom Class 1 Primary Intermediate Client CAµË0§ *?H?÷
  1? ?0?1 0 UIL10U

StartCom Ltd.1+0)U "Secure Digital Certificate Signing1806U/StartCom Class 1 Primary Intermediate Client CAµË0
 *?H?÷
??¨ÿ½½?º-Åó?Óҁj /àm?÷¤'Ú«cª?-qëc¨Ïú%2ß?Ä­ð®T¥ÌKÖæ©(Ó¯?á^lÔ x½å?±ûâªçLcfhHé»uÎ?JñßèNeÓRYÍRñx7úó Ýæ´.ôsÒ9MNdþ|F?i¤Ó?ӝïÆ??P]Ï|¸gñ?wöy·°-5'þ??9?=øS]ËËô? VéG?[¸è3n"óMýõVnм³?ÂýnÁÝýÂÀ:¯¼v?ñ&kì$7Pç©??u¢½«ä$öv*6mß!x>Ï?Ï
;x-¸Óç Ó¾OuSí?

[ reply ]
 

Privacy Statement
Copyright 2010, SecurityFocus