Check Point Software Technologies - Vulnerability Discovery Team (VDT)
http://www.checkpoint.com/defense/
Radius Manager Multiple Cross Site Scripting Issues
CVE-2010-4275
INTRODUCTION
Radius Manager is a centralized way for administration of Mikrotik, Cisco, Chillispot and StarOS routers and wireless
access points. It has
a centralized accounting system that uses Radius, provinding easy user and accounting management for ISP's.
This problem was confirmed in the following versions of the Radius Manager, other versions maybe also affected.
Radius Manager 3.8.0
CVSS Scoring System
The CVSS score is: 6.4
Base Score: 6.7
Temporal Score: 6.4
We used the following values to calculate the scores:
Base score is: AV:N/AC:L/Au:N/C:C/I:C/A:N
Temporal score is: E:F/RL:U/RC:C
DETAILS
The Radius Manager system is affected by Multiple Stored Cross Site Scripting. The “Group Name” and “Description” in
“new_usergroup” menu do not
sanitize input data, allowing attacker to store malicious javascript code in a page.
This vulnerability has been brought to our attention by Ulisses Castro from Conviso IT Security company
(http://www.conviso.com.br) and researched
internally by Rodrigo Rubira Branco from the Check Point Vulnerability Discovery Team (VDT).
Rodrigo Rubira Branco
Senior Security Researcher
Vulnerability Discovery Team (VDT)
Check Point Software Technologies
http://www.checkpoint.com/defense