CVE-2009-3731

Description

Multiple cross-site scripting (XSS) vulnerabilities in WebWorks Help 2.0 through 5.0 in VMware vCenter 4.0 before Update 1 Build 208156; VMware Server 2.0.2; VMware ESX 4.0; VMware Lab Manager 2.x; VMware vCenter Lab Manager 3.x and 4.x before 4.0.1; VMware Stage Manager 1.x before 4.0.1; WebWorks Publisher 6.x through 8.x; WebWorks Publisher 2003; and WebWorks ePublisher 9.0.x through 9.3, 2008.1 through 2008.4, and 2009.x before 2009.3 allow remote attackers to inject arbitrary web script or HTML via (1) wwhelp_entry.html, reachable through index.html and wwhsec.htm, (2) wwhelp/wwhimpl/api.htm, (3) wwhelp/wwhimpl/common/html/frameset.htm, (4) wwhelp/wwhimpl/common/scripts/switch.js, or (5) the window.opener component in wwhelp/wwhimpl/common/html/bookmark.htm, related to (a) unspecified parameters and (b) messages used in topic links for the bookmarking functionality.

Affected products

• VMware / esx_server4.0 – 4.0
• VMware / lab_manager2.0 – 2.0
• VMware / server2.0.2 – 2.0.2
• VMware / stage_manager1.0 – 1.0
• VMware / stage_manager4.0
• VMware / vCenter4.0 – 4.0
• VMware / vcenter_lab_manager4.0 – 4.0
• VMware / vcenter_lab_manager3.0.2 – 3.0.2
• VMware / vcenter_lab_manager3.0.1 – 3.0.1
• VMware / vcenter_lab_manager3.0 – 3.0
• VMware / vcenter_stage_manager1.0.1 – 1.0.1
• webworks / epublisher9.0 – 9.0
• webworks / epublisher9.1 – 9.1
• webworks / epublisher9.2 – 9.2
• webworks / epublisher9.3 – 9.3
• webworks / epublisher2008.1 – 2008.1
• webworks / epublisher2008.2 – 2008.2
• webworks / epublisher2008.3 – 2008.3
• webworks / epublisher2008.4 – 2008.4
• webworks / epublisher2009.1 – 2009.1
• webworks / epublisher2009.2 – 2009.2
• webworks / help2.0 – 2.0
• webworks / help5.0 – 5.0
• webworks / help4.0 – 4.0
• webworks / help3.0 – 3.0
• webworks / publisher2003 – 2003
• webworks / publisher8.0 – 8.0
• webworks / publisher7.0 – 7.0
• webworks / publisher6.0 – 6.0

References

• MISChttp://archives.neohapsis.com/archives/bugtraq/2009-12/0229.html
• MISChttp://www.webworks.com/Security/2009-0001/
• MISChttp://securitytracker.com/id?1023683
• MISChttp://www.osvdb.org/62738
• MISChttp://www.securityfocus.com/bid/37346
• VENDOR_ADVISORYhttp://secunia.com/advisories/38749
• MISChttp://www.osvdb.org/62742
• MISChttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5944
• MISChttp://www.securityfocus.com/archive/1/509883/100/0/threaded
• MISChttp://www.osvdb.org/62741
• VENDOR_ADVISORYhttp://secunia.com/advisories/38842
• MISChttp://www.osvdb.org/62739
• MAILING_LISThttp://lists.vmware.com/pipermail/security-announce/2009/000073.html
• MISChttp://www.osvdb.org/62740