7018793: XSS vulnerability on NAGErrors (referenced when AG error generated) injecting a Referer HTTP header into request (can use ModifyHeaders browser extension as an example)

Modify the /opt/novell/apache2/share/apache2/error/HTTP_NOT_FOUND.html.var file and simply invalidate the ‘var’ parameter found. If you invalidate the value for each occurance of the ‘var’ parameter e.g. removing the ‘H’ from ‘HTTP’, the javascript will not be executed e.g. change



<!–#if expr=”$HTTP_REFERER” –>

The link on the

<a href=”<!–#echo encoding=”url” var=”HTTP_REFERER” –>”>referring

to

<!–#if expr=”$HTTP_REFERER” –>

The link on the

<a href=”<!–#echo encoding=”url” var=”TTP_REFERER” –>”>referring

page</a> seems to be wrong or outdated. Please inform the author of


This file includes details for each supported language an error message is thrown for, and each section contains code on what to do if the HTTP-request contains an HTTP_REFERER parameter.

Related:

Leave a Reply