ICEfaces
  1. ICEfaces
  2. ICE-3363

AppScan identified a "Link Injection" vulnerability

          Details

          • Type: Bug Bug
          • Status: Closed
          • Priority: Major Major
          • Resolution: Fixed
          • Affects Version/s: 1.7.1
          • Fix Version/s: 1.8DR#2, 1.8
          • Component/s: Framework
          • Labels:
            None
          • Environment:
            All

            Description

            AppScan identified a "Link Injection" vulnerability that is related to the ICEfaces code library. The detail is provided below :

                      [2 of 53] Link Injection (facilitates Cross-Site Request Forgery)
                      Severity: Medium
                      Test Type: Application
                      Vulnerable URL: http://edsdev.blueweb.bcbsma.com:81/dmreg/block/send-receive-updates
                      (Parameter = ice.focus)
                      Remediation Tasks: Filter out hazardous characters from user input
                      Variant 1 of 132 [ID=15343]
                      The following changes were applied to the original request:
                      ? Set parameter 'ice.focus's value to '%22%27%3E%3CIMG+SRC%3D%22%
                      2FWF_XSRF.html%22%3E'
                      Validation In Response:
                      ? Fix.start('mainForm:
                      _id35:0:historyPopup','/dmreg/xmlhttp/blank');Ice.Focus.setFocus('"'><IMG
                      SRC="/WF_XSRF.html">');//-269488648]]></content></update></updates>
                      Reasoning:
                      The test response contained a link to the file "WF_XSRF.html, which proves that the Cross-Site
                      Request Forgery attempt was successful

              Activity

              Ascending order - Click to sort in descending order
              Tyler Johnson created issue -
              Tyler Johnson made changes -
              Field Original Value New Value
              Support Case References https://www.icesoft.ca:4443/supportilla/show_bug.cgi?id=5065
              Ted Goddard made changes -
              Assignee Deryk Sinotte [ deryk.sinotte ]
              Deryk Sinotte made changes -
              Assignee Deryk Sinotte [ deryk.sinotte ] Mircea Toma [ mircea.toma ]
              Mircea Toma made changes -
              Status Open [ 1 ] Resolved [ 5 ]
              Resolution Fixed [ 1 ]
              Mircea Toma made changes -
              Affects Version/s 1.7.2 [ 10130 ]
              Affects Version/s 1.7.1 [ 10122 ]
              Ken Fyten made changes -
              Fix Version/s 1.7.2 [ 10130 ]
              Affects Version/s 1.7.1 [ 10122 ]
              Affects Version/s 1.7.2 [ 10130 ]
              Ken Fyten made changes -
              Fix Version/s 1.7.2RC1 [ 10140 ]
              Fix Version/s 1.7.2 [ 10130 ]
              Ken Fyten made changes -
              Fix Version/s 1.7.2 [ 10130 ]
              Fix Version/s 1.7.2RC1 [ 10140 ]
              Mircea Toma made changes -
              Resolution Fixed [ 1 ]
              Status Resolved [ 5 ] Reopened [ 4 ]
              Mircea Toma made changes -
              Fix Version/s 1.8DR#2 [ 10142 ]
              Fix Version/s 1.7.2 [ 10130 ]
              Mircea Toma made changes -
              Status Reopened [ 4 ] Resolved [ 5 ]
              Resolution Fixed [ 1 ]
              Ken Fyten made changes -
              Fix Version/s 1.8 [ 10161 ]
              Ken Fyten made changes -
              Status Resolved [ 5 ] Closed [ 6 ]
              Assignee Mircea Toma [ mircea.toma ]

                People

                • Assignee:
                  Unassigned
                  Reporter:
                  Tyler Johnson
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  1 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved: