Roundcube Stored Cross-Site Scripting Vulnerability Fixed by 1.2


Description   (:A persistent cross-site scripting vulnerability was reported in Roundcube.:A remote attacker could exploit it by enticing their victim into opening a specially crafted mail in order to execute arbitrary JavaScript or HTML code.::This vulnerability is triggered via the "href" attribute on the "<area>" tag.::A proof of concept is available.)
     
Vulnerable Products   Vulnerable OS:
FreeBSD (FreeBSD) - AllopenSUSE (SUSE) - 13.2, Leap 42.1, Leap 42.2
     
Solution   Fixed roundcubemail packages for openSUSE 13.2, Leap 42.1 and Leap 42.2 are available.
     
CVE   CVE-2016-5103
     
References   - oss-sec: CVE Request: roundcube: XSS vulnerability in mail content page
http://seclists.org/oss-sec/2016/q2/409
- VuXML : roundcube -- XSS vulnerability
http://www.vuxml.org/freebsd/97e86d10-2ea7-11e6-ae88-002590263bf5.html
- openSUSE-SU-2016:3032-1 : important: Security update for roundcubemail
http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00016.html
- openSUSE-SU-2016:3038-1 : important: Security update for roundcubemail
http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00018.html
     
Vulnerability Manager Detection   No
     
IPS Protection  
ASQ Engine alarm Available Since
XSS - Prevention - POST : suspicious 'meta' tag found in data
3.2.0
XSS - Prevention - POST : suspicious 'img' attribute found in data
3.2.0
XSS - Prevention - POST : suspicious 'style' tag found in data
5.0.0
XSS - Prevention - POST : javascript code found in data
5.0.0
XSS - Prevention - POST : suspicious tag with event found in data
5.0.0
XSS - Prevention - POST : suspicious 'embed' tag found in data
5.0.0
XSS - Prevention - POST : 'location' javascript object found in data
5.0.0
XSS - Prevention - POST : code allowing cookie access found in data
5.0.0
XSS - Prevention - POST : 'script' tag found in data
5.0.0
XSS - Prevention - POST : suspicious 'style' attribute found in data
5.0.0
XSS - Prevention - POST : suspicious 'applet' tag found in data
5.0.0
XSS - Prevention - POST : suspicious 'div' tag found in data
5.0.0
XSS - Prevention - POST : suspicious 'img' attribute found in data
5.0.0
XSS - Prevention - POST : suspicious 'meta' tag found in data
5.0.0
XSS - Prevention - POST : suspicious 'object' tag found in data
5.0.0
XSS - Prevention - POST : suspicious 'iframe' tag found in data
5.0.0
     


 
 
 
 
 Risk level 
Moderate 

 Vulnerability First Public Report Date 
2016-05-06 

 Target Type 
Server 

 Possible exploit 
Remote