mailing list archives
LiveZilla Cross Site Scripting Vulnerability (XSS) - CVE-2010-4276
From: Rodrigo Branco <rbranco () checkpoint com>
Date: Mon, 27 Dec 2010 08:09:56 -0800
I'm writing on behalf of the Check Point Vulnerability Discovery Team to publish the following vulnerability.
Check Point Software Technologies - Vulnerability Discovery Team (VDT)
LiveZilla Cross Site Scripting Vulnerability
Accordingly to LiveZilla GmbH, "the Next Generation Live Help and Live Support System connects you to your website
visitors. Use LiveZilla to provide
Live Chats and monitor your website visitors in real-time. Convert visitors to customers - with LiveZilla! "
This problem was confirmed in the following versions of the LiveZilla, other versions maybe also affected. LiveZilla
released an update to fix the vulnerability.
CVSS Scoring System
The CVSS score is: 6.4
Base Score: 6.7
Temporal Score: 6.4
We used the following values to calculate the scores:
Base score is: AV:N/AC:L/Au:N/C:C/I:C/A:N
Temporal score is: E:F/RL:U/RC:C
LiveZilla is affected by Reflected Cross Site Scripting in server.php, in the “module” track which calls a vulnerable
Will pass thru the following files:
And finally land in this excerpt of code:
208 function lz_tracking_set_sessid(_userId, _browId)
210 if(lz_session.UserId != _userId)
212 lz_session.UserId = _userId;
213 lz_session.BrowserId = _browId;
This function do not sanitize
This vulnerability has been brought to our attention by Ulisses Castro from Conviso IT Security company
(http://www.conviso.com.br) and was
researched internally by Rodrigo Rubira Branco from the Check Point Vulnerability Discovery Team (VDT).
Rodrigo Rubira Branco
Senior Security Researcher
Vulnerability Discovery Team (VDT)
Check Point Software Technologies
Full-Disclosure - We believe in it.
Hosted and sponsored by Secunia - http://secunia.com/
- LiveZilla Cross Site Scripting Vulnerability (XSS) - CVE-2010-4276 Rodrigo Branco (Dec 27)