Condorlab

Mediatrix – Reflected XSS in Web Management Interface in Mediatrix 4402 VoIP Gateway


Advisory ID

RSN-MG-0001


Vulnerability Information

 

Mediatrix 4402 running firmware Dgw 1.1.13.186 is vulnerable to a reflected Cross Site Scripting attack (XSS) in login.esp in the Web Management Interface of the solution. The vulnerability can be exploited because it fails to properly sanitize user-supplied input.

 


Technical Information

 

Mediatrix Web Management interface is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the login.esp script. A remote attacker could exploit this vulnerability using the username parameter in a specially-crafted URL to execute script in a victim’s Web browser within the security context of the hosting Web site, once the URL is clicked. An attacker could use this vulnerability to steal the victim’s cookie-based authentication credentials.


Release Date

20/01/2014


Solutions

 

 

The UCTM solution from RedShift Networks provides the industry’s first complete security solution developed to secure VOIP networks, endpoints and applications. His research team Condor-Labs.com is constantly looking for new attack patterns, advanced penetration testing methods, vulnerability identification and deployment of new signatures for constantly subscribed clients. For more information visit www.redshiftnetworks.com


External Resources

 

 

IBM  Vulnerability X-Force

http://xforce.iss.net/xforce/xfdb/90656

Common Vulnerabilities and Exposures (CVE)

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1612