注册 登录  
 加关注
   显示下一条  |  关闭
温馨提示!由于新浪微博认证机制调整,您的新浪微博帐号绑定已过期,请重新绑定!立即重新绑定新浪微博》  |  关闭

白帽子安全漏洞

IT 计算机网络信息安全 漏洞分享 Information Security

 
 
 

日志

 
 
 
 

【转载】The Weather Channel weather.com Almost All Links Vulnerable to XSS Attacks  

2015-06-20 13:06:08|  分类: XSS |  标签: |举报 |字号 订阅

  下载LOFTER 我的照片书  |

The Weather Channel weather.com Almost All Links Vulnerable to XSS Attacks







Domain Description:


"The Weather Channel is an American basic cable and satellite television channel which broadcasts weather forecasts and weather-related news and analyses, along with documentaries and entertainment programming related to weather."


"As of August 2013, The Weather Channel was received by approximately 99,926,000 American households that subscribe to a pay television service (87.50% of U.S. households with television), making it the most common cable channel in the country." (Wikipedia)







Vulnerability description:



The Weather Channel has a security problem. It is vulnerable to XSS attacks.


Almost all links under the domain weather.com are vulnerable to XSS attacks. Attackers just need to add script at the end of The Weather Channel's URLs. Then the scripts will be executed.


10 thousands of Links were tested based a self-written tool. During the tests, 76.3% of links belong to weather.com were vulnerable to XSS attacks.


The reason of this vulnerability is that Weather Channel uses URLs to construct its HTML tags without filtering malicious script codes. 








The vulnerability can be attacked without user login. Tests were performed on Firefox (33.0) in Ubuntu (14.04) and IE (8.0. 7601) in Windows 7.








The Weather Channel weather.com Almost All Links Vulnerable to XSS Attacks - whitehat - 白帽子安全漏洞






The Weather Channel weather.com Almost All Links Vulnerable to XSS Attacks - whitehat - 白帽子安全漏洞









POC Codes, e.g.

http://www.weather.com/slideshows/main/"--/>"><img src=x onerror=prompt('justqdjing')>

http://www.weather.com/home-garden/home/white-house-lawns-20140316%22--/"--/>"><img src=x onerror=prompt('justqdjing')>t%28%27justqdjing%27%29%3E

http://www.weather.com/news/main/"><img src=x onerror=prompt('justqdjing')>








POC Video:





The Weather Channel has patched this Vulnerability in late November, 2014 (last Week).









Reported by:

Wang Jing, School of Physical and Mathematical Sciences, Nanyang Technological University, Singapore.




Related Articles:

http://www.scmagazine.com/the-weather-channels-website-found-vulnerable-to-xss-attacks/article/386010/

http://www.hotforsecurity.com/blog/weather-channel-web-site-vulnerable-to-reflected-cross-site-scripting-xss-10906.html

http://www.computerworld.com/article/2852502/weathercom-fixes-web-app-flaws.html

http://www.pcworld.com/article/2853292/weathercom-fixes-web-application-vulnerabilities.html

http://www.theregister.co.uk/2014/12/01/weather_channel_forecast_bleak_with_a_chance_of_xss/

https://cxsecurity.com/issue/WLB-2014120001

http://seclists.org/fulldisclosure/2014/Nov/89

http://whitehatview.tumblr.com/post/104313615841/the-weather-channel-fixes-web-app-flaws-the

http://diebiyi.com/articles/%E5%AE%89%E5%85%A8/the-weather-channel-weather-com-almost-all-links-vulnerable-to-xss-attacks/

http://tetraph.wordpress.com/2014/12/04/httpdiebiyi-comarticles%E5%AE%89%E5%85%A8the-weather-channel-weather-com-almost-all-links-vulnerable-to-xss-attacks/

http://whitehatpost.lofter.com/post/1cc773c8_4183cc5





  评论这张
 
阅读(14)| 评论(0)
推荐 转载

历史上的今天

在LOFTER的更多文章

评论

<#--最新日志,群博日志--> <#--推荐日志--> <#--引用记录--> <#--博主推荐--> <#--随机阅读--> <#--首页推荐--> <#--历史上的今天--> <#--被推荐日志--> <#--上一篇,下一篇--> <#-- 热度 --> <#-- 网易新闻广告 --> <#--右边模块结构--> <#--评论模块结构--> <#--引用模块结构--> <#--博主发起的投票-->
 
 
 
 
 
 
 
 
 
 
 
 
 
 

页脚

网易公司版权所有 ©1997-2017