[ICE-10998] 'ice.window', 'ice.view' parameters vulnerable to JS injection attack - ICEsoft JIRA Issue Tracker

Details

Type: Improvement
Status: Closed
Priority: Critical
Resolution: Fixed
Affects Version/s: 3.3, 4.0
Fix Version/s: EE-4.1.0.RC1, EE-4.1.0.GA, EE-3.3.0.GA_P04, 4.2.BETA, 4.2
Component/s: Framework
Labels:
None
Environment:
supported browsers

Assignee Priority:
P1
Support Case References:
https://icesoft.my.salesforce.com/5007000001aT0Eo
Affects:

Documentation (User Guide, Ref. Guide, etc.)

Description

This behaviour makes ICEFaces vulnerable to Javascript injection attacks when accessed URLs contain Javascript code as parameter values. For ICEfaces 3.* versions only 'ice.view' parameter is vulnerable while in ICEfaces 4.* versions 'ice.view' and 'ice.window' parameters are vulnerable to JS injection attacks.

Activity

Repository	Revision	Date	User	Message
ICEsoft Public SVN Repository	#48610	Tue Apr 05 07:06:22 MDT 2016	mircea.toma	~~ICE-10998~~ Verify if the received window ID is valid before creating the scope map. Also verify if the view ID parameter is valid.
				Files Changed
				MODIFY /icefaces4/trunk/icefaces/core/src/main/java/org/icefaces/impl/application/WindowScopeManager.java MODIFY /icefaces4/trunk/icefaces/core/src/main/java/org/icefaces/impl/event/BridgeSetup.java

People

Assignee:

Mircea Toma

Reporter:

Mircea Toma

Votes:

0 Vote for this issue

Watchers:

6 Start watching this issue

Dates

Created:

05/Apr/16 5:24 AM

Updated:

13/Mar/17 1:33 PM

Resolved:

12/Apr/16 6:49 AM