咬定青山不放松,立根原在破岩中。千磨万击还坚劲,任尔东西南北风

© 竹意 | Powered by LOFTER

谷雨 醉心 冬小麦:

IT 计算机&信息网络 技术:

白帽子计算机安全:

The Weather Channel at Least 76.3% Links Vulnerable to XSS Attacks



Domain Description:
http://www.weather.com/


“The Weather Channel is an American basic cable and satellite television channel which broadcasts weather forecasts and weather-related news and analyses, along with documentaries and entertainment programming related to weather.  Launched on May 2, 1982, the channel broadcasts weather forecasts and weather-related news and analysis, along with documentaries and entertainment programming related to weather.“ 


“As of February 2015, The Weather Channel was received by approximately 97.3 million American households that subscribe to a pay television service (83.6% of U.S. households with at least one television set), which gave it the highest national distribution of any U.S. cable channel. However, it was subsequently dropped by Verizon FiOS (losing its approximately 5.5 millions subscribers), giving the title of most distributed network to HLN. Actual viewership of the channel averaged 210,000 during 2013 and has been declining for several years. Content from The Weather Channel is available for purchase from the NBCUniversal Archives.” (Wikipedia)




Vulnerability description:
The Weather Channel has a cyber security problem. Hacker can exploit it by XSS bugs. 

 

Almost all links under the domain weather.com are vulnerable to XSS attacks. Attackers just need to add script at the end of The Weather Channel’s URLs. Then the scripts will be executed. 

 

10 thousands of Links were tested based a self-written tool. During the tests, 76.3% of links belong to weather.com were vulnerable to XSS attacks. 

 

The reason of this vulnerability is that Weather Channel uses URLs to construct its HTML tags without filtering malicious script codes. 



The vulnerability can be attacked without user login. Tests were performed on Firefox (34.0) in Ubuntu (14.04) and IE (9.0.15) in Windows 8.




Discovered by:
Wang Jing, Division of Mathematical Sciences (MAS), School of Physical and Mathematical Sciences (SPMS), Nanyang Technological University (NTU), Singapore. (@justqdjing)
http://www.tetraph.com/wangjing





  More Details:
 http://seclists.org/fulldisclosure/2014/Nov/89
 http://lists.openwall.net/full-disclosure/2014/11/27/3 
 http://whitehatview.tumblr.com/post/104313615841/the-weather-channel-flaw
 http://www.inzeed.com/kaleidoscope/xss-vulnerability/the-weather-channel-exploit
 http://diebiyi.com/articles/security/the-weather-channel-bug
 http://whitehatpost.lofter.com/post/1cc773c8_6f2d4a8
 https://vulnerabilitypost.wordpress.com/2014/12/04/the-weather-channel-flaw
 http://tetraph.blog.163.com/blog/static/234603051201411475314523/
 http://ithut.tumblr.com/post/121916595448/weather-channel-xss
 https://mathfas.wordpress.com/2014/12/04/the-weather-channel-weather-bug
 http://computerobsess.blogspot.com/2014/12/the-weather-channel-xss.html
 http://www.tetraph.com/blog/xss-vulnerability/the-weather-channel-bug 
 http://itprompt.blogspot.com/2014/12/the-weather-channel-fixes-web-app-flaws.html

 
评论
热度(13)
  1. 白帽子安全谷雨 醉心 冬小麦 转载了此图片  到 竹意
  2. 白帽子安全谷雨 醉心 冬小麦 转载了此图片  到 测试想法
  3. 白帽子安全谷雨 醉心 冬小麦 转载了此图片  到 湛天雲海碧波影
  4. 白帽子安全谷雨 醉心 冬小麦 转载了此图片  到 文豆 & 文库
 
回到顶部