SNS Vulnerability

Bugzilla Cross-Site Scripting Vulnerability Fixed by 4.4.12 and 5.0.3

Description

(:A cross-site scripting vulnerability has been identified in Bugzilla.:A remote attacker could exploit it in order to execute arbitrary JavaScript or HTML code by enticing their victim into following a specially formed link.::This vulnerability, located in the "Summary" field of the "showdependancygraph.cgi" page, stems from an incorrect parsing while building dependency graphs.::A proof of concept is available.)

Vulnerable Products

Vulnerable OS:
FreeBSD (FreeBSD) - AllVulnerable Software:
Bugzilla (Mozilla) - 2.16, 2.16.1, 2.16.2, 2.16.3, 2.16.4, ..., 4.5.5, 4.5.6, 5.0, 5.0.1, 5.0.2

Solution

Fixed bugzilla44 and bugzilla50 packages for FreeBSD are available.

CVE

CVE-2016-2803

References

- Bugzilla : 4.4.11 and 5.0.3 Releases
https://www.bugzilla.org/security/4.4.11/
- VuXML : Bugzilla security issues
http://www.vuxml.org/freebsd/036d6c38-1c5b-11e6-b9e0-20cf30e32f6d.html

Vulnerability Manager Detection

IPS Protection

ASQ Engine alarm	Available Since
XSS - Prevention - GET : suspicious 'iframe' tag found in URL	3.2.0
XSS - Prevention - GET : suspicious 'meta' tag found in URL	3.2.0
XSS - Prevention - GET : suspicious tag with event found in URL	3.2.0
XSS - Prevention - GET : suspicious 'applet' tag found in URL	3.2.0
XSS - Phishing : suspicious 'div' tag found in URL	3.2.0
XSS - Prevention - GET : suspicious 'style' attribute found in URL	3.2.0
XSS - Prevention - GET : suspicious 'img' tag found in URL	3.2.0
XSS - Phishing : suspicious 'a' tag found in URL	3.2.0
XSS - Prevention - GET : cookie access attempt using script language found in URL	3.2.0
XSS - Prevention - GET : suspicious 'embed' tag found in URL	3.2.0
XSS - Prevention - GET : suspicious 'object' tag found in URL	3.2.0
XSS - Phishing : suspicious 'form' tag found in URL	3.2.0
XSS - Prevention - GET : javascript code found in URL	3.2.0
XSS - Prevention - GET : evasion attempt using tag characters encoding in URL	3.2.0
XSS - Prevention - GET : suspicious 'style' tag found in URL	3.2.0
XSS - Phishing : suspicious 'link' tag found in URL	3.2.0
XSS - Prevention - GET : 'script' tag found in URL	3.2.0
XSS - Prevention - GET : 'location' javascript object found in URL	3.2.0
XSS - Prevention - GET : suspicious 'div' tag found in URL	3.2.0

Risk level

Low

Vulnerability First Public Report Date

2016-05-16

Target Type

Client

Possible exploit

Remote