vb.org Archive

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vB3 General Discussions (https://vborg.vbsupport.ru/forumdisplay.php?f=111)
-   -   HTML exploits on Vb 2.2.8 (https://vborg.vbsupport.ru/showthread.php?t=57943)

Xride 10-16-2003 11:27 PM
HTML exploits on Vb 2.2.8
 
Befor I upgraded my forum, I was running 2.2.8 and someone said that cause I had the HTML ON that they could somehow grab my cookies that store passwords, and then use that to access any account that has logged on since this HTML was "running".

First is this true?

Second, I know this is unlikely, but for my own amusement I am dieing of curiosity of how this works, I would like to try this out while the old forum still has a place to sit.
So can someone tell me how? or a link even?

Thanks

NTLDR 10-16-2003 11:41 PM
Any version of vB that has HTML for posts/signatures/pm's etc enabled is open to be exploited.

Erwin 10-17-2003 12:46 AM
2.2.8 or any version before 2.2.9 has security holes besides HTML vulnerabilities.

If HTML is enabled, vB in ANY version is vulnerable.

Xride 10-17-2003 01:34 AM
How is it vulnerable though? I dont see how HTML would do anything? its not like you can install scripts or anything???

Dras 10-17-2003 02:45 AM
But you can get HTML coding to run scripts from different sites, and to do a bunc of stuff. All sites need HTML to run anyhitng to just keep that in mind.

EvilLS1 10-17-2003 02:51 AM
Quote:
Originally Posted by Xride
How is it vulnerable though? I dont see how HTML would do anything? its not like you can install scripts or anything???
Its possible to steal someone's cookie info by executing a simple javascript in the victims browser.

Steve Machol 10-17-2003 04:18 AM
We are not be stupid enough to publish exactly how these exploits can be used. That would be foolish and irresponsible.

Logician 10-17-2003 09:31 AM
Quote:
Originally Posted by Steve Machol
We are not be stupid enough to publish exactly how these exploits can be used. That would be foolish and irresponsible.
Agreed 100% :)

On the other hand it would as wise if you restricted the VB bugs forum to customers only but unfortunately I can't seem to convince vb.com on this, already it is as much dangerous. ;)

I'm pretty sensitive on this subject, so couldn't help myself, sorry! lol..

Erwin 10-17-2003 01:16 PM
Please don't post ways to steal cookie information here. :) Even if you know how to. Let's not teach script kiddies ways to hack vB.

Xride 10-18-2003 06:03 AM
fair enough, didnt think anyone would show how its done.
but knowing that all versions are vunerable as long as HTML is enabled is good to know, as now I will ALWAYS turn off HTML.

Still dont really understand how you can steal the cookies from a remote script running local to the forum :ermm: ah well, i'll learn more soon, and maybe understand the why it works?...


All times are GMT. The time now is 09:28 PM.

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01004 seconds
  • Memory Usage 1,725KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (2)bbcode_quote_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (10)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete