Jump to content
Aerosol

Cisco Network Academy Cross Site Scripting

By Aerosol, in Exploituri

Recommended Posts

Aerosol Newbie

Aerosol

Posted
Posted 

###########################
#Exploit Title: # Script Cisco Network Academy - Stored XSS vulnerability
#Date: 017/03/2015
#Author: kabanni bntdzdz@gmail.com
#Product web page: www.cisco.com 

#Tested on:  Windows 8.1
#OSVDB-ID: 
###########################
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1
1                      ______                                          0
0                   .-"      "-.                                       1
1                  / HaChkerz_Dz  \ =-=-=-=-=-=-=-=-=-=-=-=|           0
0 Algerian HaCker |              | > Site : GDGBordj.org |             1
1 --------------- |,  .-.  .-.  ,| > fb : @kabanni       |             0
0                 | )(_o/  \o_)( | > [email]kacily2008@gmail.com[/email]|             1
1                 |/     /\     \| =-=-=-=-=-=-=-=-=-=-=-|             0
0       (@_       (_     ^^     _)  0X00 Team                          1
1  _     ) \_______\__|IIIIII|__/_______________________               0
0 (_)@8@8{}<________|-\IIIIII/-|________________________>              1
1        )_/        \          /                                       0
0       (@           `--------`   2015, 0x00 Team                      1
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-0
0              Script Cisco Network Academy XSS vulnerability          1
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-0
##########################
Description
A vulnerability in the web framework of Cisco Netacad could allow an unauthenticated, 
remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web interface on the affected system.
The vulnerability is due to insufficient input validation of several parameters in the input fields Quarantine web page. 
An attacker could exploit this vulnerability by persuading a user to access a malicious link.

# Sample Payload for Stored XSS: 

"<script>alert(0);</script> "

# Solution Fix & Patch:

Filter the input fields aganist to XSS attacks & Upgrade the the script.

#Security Risk:

The risk of the vulnerabilities above estimated as high.

#Proof of Concept (PoC):

<input type="TEXT" maxlength="250" size="50" name="ANSWERrt_239101" disabled="">

#Details of the attack:
The web site netacd.com , is allowed to the users pass the exams of CCNA .
The questions compose in many format like Check box , Radio , and Input field .
When enter the code malicious to a question witch content an input field ,
finally if submit the answers ,and when  go to show the assessment ,
the user appear  a message java script .  

    --==[[ Greetz To ]]==--
############################################################################################
#0x00 , Alhack , Mr.elhdj Google , Hakim_Ghorb , Mohamed Ramaden , Team Anonymous .
#Mr.Zaki ,Dr.Ben Taleb,Nas_unknown ,Dahmani,Good_person ,Boud_Sah ,Moh_Dz ,Yass_assasine.
#Amin-Biskra , Bouhlel ,Meliani, Najmo & All students TIC & Informatics at Univ-Msila
#############################################################################################
                             --==[[Love to]]==--
# My Father & Mother ,All Kacem(bira9i9) ,my Ex Teacher , My wife .
                       --==[[ All Muslims Hachers ]]==--
                            <3  0x00 Team <3

Source

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing
×
×
  • Create New...