Author: www.80vul.com [Email: saiy1986@gmail.com]
Release Date: 2010/7/10
References: http://80vul.com/Zend%20studio/Zend%20studio%20location%20Cross.htm
Zend Studio is a commercial, proprietary integrated development environment (IDE) for PHP developed by Zend Technologies, based on the PHP Development Tools (PDT) plugin for the Eclipse platform (the PDT project is led by Zend).
We found a security bug of it in Zend studio [version >6.0], the description of a function of php script does'nt be escaped or htmlencode, so it lead to can be exploited to execute arbitrary HTML and script code what the attacker inject evil codz on function’s description.
And this vul is a “Cross-Zone Scripting” vul, so Successful exploitation allows execution of arbitrary code in user’s system.
DEMO:
<?php
/**
* <script>new ActiveXObject("WScript.shell").Run('calc.exe',1,true);</script>");
*/
function a() {
}
Then Open the function a()’s description [type a word "a" or move your mouse on it] ,the calc.exe well be run.
Disclosure Timeline:
2010/07/08 - Found this Vulnerability
2010/07/10 - Public Disclosure
分享到:
相关推荐
Cross-site Scripting
Complete Cross-site Scripting Walkthrough
英文版 10 Quick Facts About XSS Viruses and Worms" 5 An Overview of Cross-Site Scripting (XSS)" 6 Non-Persistent" 6 Persistent" 9 How They Do It: Methods of Propagation" 10
uNode - Visual Scripting - 2.3.unitypackage uNode - Visual Scripting - 2.3.unitypackage uNode - Visual Scripting - 2.3.unitypackage
cross_site_scripting.pdf
photoshop-cc-scripting-guide-2015学习教程
AE脚本设计参考手册(After-Effects-CS6-Scripting-Guide)
ug894-vivado-tcl-scripting.pdfug894-vivado-tcl-scripting.pdfug894-vivado-tcl-scripting.pdfug894-vivado-tcl-scripting.pdf
Footnoted_advanced_bash-scripting_guide_2014-03-10_v.10_abs-guide Footnoted_advanced_bash-scripting_guide_2014-03-10_v.10_abs-guide Footnoted_advanced_bash-scripting_guide_2014-03-10_v.10_abs-guide ...
JDK9-JSE-Java Scripting Programmer's Guide-21
struts-scripting-1.0.1
kotlin-scripting-compiler-impl.jar
Microsoft - Windows Scripting With Wmi(2007) PDF版
kotlin-scripting-common.jar
Oracle Hyperion Essbase - Essbase Scripting Capabilities - 培训资料 Describe the scripting capabilities of Essbase Explain how to write, store, and run report scripts using Report Writer commands ...
You will then focus on one of the most common JavaScript security attacks, cross-site scripting, and how to prevent cross-site scripting and cross-site forgery. Last but not least, the book covers ...
It has a Crawler and Vulnerability Scanner (SQL Injection, Cross Site Scripting). It can support not only scanning website, but also POC (Proof of concept) for web vulnerabilities: SQL Injection and ...
There are several work is going on in the direction of securing Cross-Site Scripting Vulnerability. The work is also going on to finding the possible threats in the direction of attack detection. ...
the HFSS Scripting Interface. This tool provides a set of MATLAB functions to create 3D objects in HFSS by generating the required HFSS Scripts. Basically, anything that can be done in HFSS user ...
PHP Version 3.0 is an HTML-embedded scripting language. Much of its syntax is borrowed from C, Java and Perl with a couple of unique PHP-specific features thrown in. The goal of the language is to ...