CVE-2007-0817
published 2007-02-07CVE-2007-0817: Cross-site scripting (XSS) vulnerability in Adobe ColdFusion web server allows remote attackers to inject arbitrary HTML or web script via the User-Agent HTTP…
PriorityP420medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EXPLOIT
EPSS
9.52%
94.8th percentile
Cross-site scripting (XSS) vulnerability in Adobe ColdFusion web server allows remote attackers to inject arbitrary HTML or web script via the User-Agent HTTP header, which is not sanitized before being displayed in an error page.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| adobe | coldfusion | — | — |
| adobe | coldfusion | — | — |
| adobe | coldfusion | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Suricata
ET WEB_SERVER Microsoft SharePoint Server 2007 _layouts/help.aspx Cross Site Scripting Attempt
suricata·2010-07-30
CVE-2010-0817 ET WEB_SERVER Microsoft SharePoint Server 2007 _layouts/help.aspx Cross Site Scripting Attempt
ET WEB_SERVER Microsoft SharePoint Server 2007 _layouts/help.aspx Cross Site Scripting Attempt
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SERVER Microsoft SharePoint Server 2007 _layouts/help.aspx Cross Site Scripting Attempt"; flow:established,to_server; http.uri; content:"/_layouts/help.aspx"; nocase; content:"cid0="; nocase; pcre:"/cid0\x3d.+(script|alert|onmouse[a-z]+|onkey[a-z]+|onload|onunload|ondragdrop|onblur|onfocus|onclick|ondblclick|onsubmit|onreset|onselect|onchange)/i"; reference:url,www.htbridge.ch/advisory/xss_in_microsoft_sharepoint_server_2007.html; reference:url,tools.cisco.com/security/center/viewAlert.x?alertId=20415; reference:url,www.microsoft.com/technet/security/Bulletin/MS10-039.mspx; reference:url,tools.cisco.com/security/center/viewAler
Exploit-DB
Microsoft SharePoint Server 2007 - Cross-Site Scripting
exploitdb·2010-04-29
CVE-2010-0817 Microsoft SharePoint Server 2007 - Cross-Site Scripting
Microsoft SharePoint Server 2007 - Cross-Site Scripting
---
Vulnerability ID: HTB22350
Reference:
http://www.htbridge.ch/advisory/xss_in_microsoft_sharepoint_server_2007.html
http://www.microsoft.com/technet/security/advisory/983438.mspx
Product: Microsoft SharePoint Server 2007
Vendor: Microsoft Corporation
Vulnerable Version: 12.0.0.6421 and Probably Prior Versions Vendor
Notification: 12 April 2010 Vulnerability Type: XSS (Сross Site Sсriрting)
Status: Not Fixed, Vendor Alerted, Awaiting Vendor Response Risk level:
Medium
Credit: High-Tech Bridge SA (http://www.htbridge.ch/)
Vulnerability Details:
User can execute arbitrary JavaScript code within the vulnerable
application.
The vulnerability exists due to failure in the "/_layouts/help.aspx" script
to properly sanitize user-s
Exploit-DB
Adobe ColdFusion 6/7 - User_Agent Error Page Cross-Site Scripting
exploitdb·2007-02-05
CVE-2007-0817 Adobe ColdFusion 6/7 - User_Agent Error Page Cross-Site Scripting
Adobe ColdFusion 6/7 - User_Agent Error Page Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/22401/info
Adobe ColdFusion is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data.
An attacker could exploit this vulnerability to execute arbitrary script code in the context of the affected website. This may allow the attacker to steal cookie-based authentication credentials and to launch other attacks.
http://www.example.com/&USER_AGENT=%3Cscript%3Ealert(String.fromCharCode(120,115,115))%3C/s> cript%3E&HTTP_REFERER=http://www.google.com/
No writeups or analysis indexed.
http://osvdb.org/32120http://secunia.com/advisories/24115http://www.adobe.com/support/security/bulletins/apsb07-04.htmlhttp://www.securityfocus.com/archive/1/459178/100/0/threadedhttp://www.securityfocus.com/bid/22401http://www.securitytracker.com/id?1017645http://www.vupen.com/english/advisories/2007/0593http://osvdb.org/32120http://secunia.com/advisories/24115http://www.adobe.com/support/security/bulletins/apsb07-04.htmlhttp://www.securityfocus.com/archive/1/459178/100/0/threadedhttp://www.securityfocus.com/bid/22401http://www.securitytracker.com/id?1017645http://www.vupen.com/english/advisories/2007/0593
2007-02-07
Published