SB2012041109 - Multiple vulnerabilities in DNN DotNetNuke

Description

This security bulletin contains information about 2 secuirty vulnerabilities.

1) Cross-site scripting (CVE-ID: CVE-2012-1030)

The disclosed vulnerability allows a remote attacker to perform cross-site scripting (XSS) attacks.

The vulnerability exists due to insufficient sanitization of user-supplied data. The vulnerability allows user-assisted remote attackers to inject arbitrary web script or HTML via a crafted URL containing text that is used within a modal popup.

Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.

2) Cross-site scripting (CVE-ID: CVE-2012-1036)

Vulnerability allows a remote attacker to perform XSS attacks.

The vulnerability is caused by an input validation error in the telerik HTML editor in DotNetNuke before 5.6.4 and 6.x before 6.1.0. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in victim's browser in security context of vulnerable website.

Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.

Remediation

Install update from vendor's website.

References

• http://technet.microsoft.com/en-us/security/msvr/msvr12-003
• http://www.dotnetnuke.com/News/Security-Policy/Security-bulletin-no.62.aspx
• http://technet.microsoft.com/en-us/security/msvr/msvr12-002
• http://www.dotnetnuke.com/News/Security-Policy/Security-bulletin-no.59.aspx