WebCollab 'item' Parameter HTTP Response Splitting Vulnerability Network Vulnerability

Summary

This host is installed with WebCollab and is prone to HTTP response splitting vulnerability.

Impact

Successful exploitation will allow remote attackers to insert arbitrary HTTP headers, which will be included in a response sent to the user. Impact Level: Application

Solution

Upgrade to WebCollab 3.31 or later, For updates refer to http://webcollab.sourceforge.net

Insight

Input passed via the 'item' GET parameter to help/help_language.php is not properly sanitised before being returned to the user.

Affected

WebCollab versions 3.30 and prior.

Detection

Send a crafted exploit string via HTTP GET request and check whether it is able to inject malicious data in header or not.

References

http://freecode.com/projects/webcollab/releases/358621
http://packetstormsecurity.com/files/123771
http://seclists.org/bugtraq/2013/Oct/119
http://secunia.com/advisories/55235
http://sourceforge.net/p/webcollab/mailman/message/31536457
http://www.osvdb.org/98768

Updated on 2017-03-28

Severity

Classification

CVE CVE-2013-2652

CVSS	Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N

Related Vulnerabilities

AdaptCMS Lite Cross Site Scripting and Remote File Include Vulnerabilities
Adobe ColdFusion Multiple Full Path Disclosure Vulnerabilities
AdaptCMS 'init.php' Remote File Include Vulnerability
Apache ActiveMQ Persistent Cross-Site Scripting Vulnerability
Advantech WebAccess Multiple Stack Based Buffer Overflow Vulnerabilities

Take action and discover your vulnerabilities