Monitorix, an open source system monitoring tool, was found to be vulnerable to two XSS vulnerabilities, which could allow attackers to execute arbitrary script code in a user's browser in the context of the Web server process, access sensitive data, or hijack a user's session. The issue is that the built-in HTTP server failed to adequately sanitize request strings of malicious JavaScript. So by leveraging this issue, an attacker may be able to inject arbitrary cookies. The same issue could also cause arbitrary HTML and script code to be executed in a user's browser within the security context of the affected site. Input passed via requests to the "handle_request()" function (lib/HTTPServer.pm) is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. The issue is said to be fixed in Monitorix 3.40. References: http://www.securityfocus.com/bid/63913/info http://secunia.com/advisories/55857/ http://www.monitorix.org/news.html#N340
Created monitorix tracking bugs for this issue: Affects: fedora-all [bug 1038073] Affects: epel-6 [bug 1038074]
monitorix-3.4.0-1.el6 has been pushed to the Fedora EPEL 6 stable repository. If problems still persist, please make note of it in this bug report.
monitorix-3.4.0-1.fc19 has been pushed to the Fedora 19 stable repository. If problems still persist, please make note of it in this bug report.
monitorix-3.4.0-1.fc20 has been pushed to the Fedora 20 stable repository. If problems still persist, please make note of it in this bug report.
Note that CVE-2013-7072 has been rejected: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-7072 No further details available at the moment
(In reply to Murray McAllister from comment #5) > Note that CVE-2013-7072 has been rejected: > > http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-7072 > > No further details available at the moment Reasoning from MITRE in <http://seclists.org/oss-sec/2014/q2/541>