SNS Advisory No.99
Cybozu Garoon RSS Reader Arbitrary Script Execution Vulnerability
Problem first discovered on: Fri, 27 Apr 2007
Published on: Thu, 3 Jul 2008
Severity Level:
Medium
Overview:
Cybozu Garoon RSS reader has a vulnerability that allows attackers to execute arbitrary script code in the user's Web browser that recognizes RSS feeds due to an error in processing to display the feeds.
Problem Description:
Cybozu Garoon is a Web-based groupware application suite.
Garoon's built-in RSS reader has a vulnerability that allows attackers to inject malicious script code due to an error in processing to output particular data included in the RSS feed.
If the user is tricked into subscribing to a malicious RSS feed, arbitrary script code could be executed in the user's Web browser when the feed is updated and sensitive information including cookies could be obtained.
Affected Versions:
------------------
Cybozu Garoon 2.0.0 - 2.1.3
Solution:
---------
The vulnerability can be fixed by updating the software to Cybozu Garoon 2.5.0 or later.
Discovered by:
--------------
Yoshiki Kawata (LAC)
Thanks to:
----------
This SNS Advisory is being published in coordination with Information-technology Promotion Agency, Japan (IPA) and JPCERT/CC.
Disclaimer:
-----------
The information contained in this advisory may be revised without prior notice and is provided as it is. Users shall take their own risk when taking any actions following reading this advisory. LAC Co., Ltd. shall take no responsibility for any problems, loss or damage caused by, or by the use of information provided here.
This advisory can be found at the following URL:
http://www.lac.co.jp/english/advisory/99_e.html
