Re: SSI & CSS execution in MakeBook 2.2

From: Kristina Pfaff-Harris (
Date: 06/13/02

Date: 13 Jun 2002 15:13:02 -0000
From: Kristina Pfaff-Harris <>

('binary' encoding is not supported, stored as-is) In-Reply-To: <>

>Advisory name: SSI & CSS execution in MakeBook 2.2
>Advisory number: 5
>Application: MakeBook 2.2 (CGI script)
>Application author: Kristina Pfaff-Harris

Gah. This is embarassing, especially since the original advisory about
Matt's guestbook came out frigging years ago.


Name, email, and text entered are now checked more rigorously, which
should fix this bug. I've notified all registered users of the script to
upgrade immediately.

The fix is a quick and ugly one, and does not allow for international
characters in either the name or the email, and thus does not allow for
several perfectly valid email addresses, but also should eliminate the
vulnerability. Names now are stripped of everything but A-Za-z0-9-_.'
and emails of everything but A-Za-z0-9-_.@ .

Btw, and just as a side note, does anyone actually notify the writer of
the script/software/whatever that has an exploit anymore? (I mean besides
just posting to BugTraq?) It would have been nice to see a note about this
before seeing it here. :-)


Relevant Pages

  • Opera Web Browser v10.62 (CSS) Cross Domain Vulnerability
    ... var s = document.body.currentStyle.DOM; ... Opera 10.62 ... Original Advisory: ...
  • Netscape Web Browser (CSS) Cross Domain Vulnerability
    ... var s = document.body.currentStyle.DOM; ... Netscape v9.0.0.6 ... Original Advisory: ...
  • 0.167
    ... This script is used by Linus and Marcelo to rearrange and reformat BK ... fix obfuscation of unknown addresses in terse/oneline modes ... Bryan O'Sullivan's address got hosed. ... $indent is auto-generated from $indent1. ...
  • Re: Problem with popen on windows
    ... I just found a fix that works for me.. ... parent for the child script.. ... Private Function ParseCmdLine ... >> def system ...
  • Re: Script-in SELF Permission?
    ... Im all set in the mailbox rights area, ... Using the script Quest gave me to fix the msExchangeSecurityDescriptor ... I need a script or app that will go into each user object ...