Cisco Systems, Inc.(R)   Home|Log In|Register|Contacts & Feedback|Site Help   
  
Select a Location / Language

2 Security flaws threatens Cisco Web site.


A vulnerability in Cross-Site Scripting could mean trouble for both Cisco and its Web site users .

The two vulnerabilities would allow attackers to cause users to view third-party
malicious JavaScript or HTML code as if it were the legitimate content offered by Cisco.

Demo 1 - Cisco Search .
Demo 2 - Cisco Home Page (Fixed by Cisco,16/6/2003).
Description:
Cisco Web Site could allow a remote attacker to launch cross-site scripting attacks.

A vulnerability regarding the lack of input validation in the Web site
(404 redirection & Search ) could allow a remote attacker to create
a specially-crafted HTML link with malicious script code embedded.

The code would be executed if the user clicked on the link .

1)First XSS reffer Cisco Home page , with script or html tag in the URL ,
which lead to 404 page , that By not filtering user input,
allow attacker to inject HTML, JavaScript, Java Applets, VBScript, etc. into Cisco Site.


2)Seocnd XSS couse by unixware.scohelp Bug [12/10/2000] on www-search.cisco.com,
argument passed in the URI as the "filter" value.
Supplying a carefully built value for the filter argument an attacker
can change the program flow and execute XSS code.


More Not-Fixed XSS Holes can be found on http://www.CrossZone.org
more IE Security Demos can be found on http://sec.drorshalev.com

Take Care
dror

drorshalev@yahoo.com

Are you Really Safe ?
http://www.SafeCenter.NET
More 36 words about XSS
-------------------------------------
XSS vulnerabilities are at their most serious when user logins are involved.
They may in some circumstances make it possible for an attacker to "steal"
a user's session information, potentially allowing them to login as the victim user.