WebCollab 'item' Parameter HTTP Response Splitting Vulnerability Network Vulnerability

Summary

This host is installed with WebCollab and is prone to HTTP response splitting vulnerability.

Impact

Successful exploitation will allow remote attackers to insert arbitrary HTTP headers, which will be included in a response sent to the user. Impact Level: Application

Solution

Upgrade to WebCollab 3.31 or later, For updates refer to http://webcollab.sourceforge.net

Insight

Input passed via the 'item' GET parameter to help/help_language.php is not properly sanitised before being returned to the user.

Affected

WebCollab versions 3.30 and prior.

Detection

Send a crafted exploit string via HTTP GET request and check whether it is able to inject malicious data in header or not.

References

http://freecode.com/projects/webcollab/releases/358621
http://packetstormsecurity.com/files/123771
http://seclists.org/bugtraq/2013/Oct/119
http://secunia.com/advisories/55235
http://sourceforge.net/p/webcollab/mailman/message/31536457
http://www.osvdb.org/98768

Updated on 2017-03-28

Severity

Classification

CVE CVE-2013-2652
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N

Related Vulnerabilities

An Image Gallery Directory Traversal Vulnerability
Apache Tiles Multiple XSS Vulnerability
Apache Struts2 'XWork' Information Disclosure Vulnerability
Apache Tomcat 'sendfile' Request Attributes Information Disclosure Vulnerability
Apache Roller 'q' Parameter Cross Site Scripting Vulnerability

Take action and discover your vulnerabilities