CVE-2004-2128

Vulnerability

BRS WebWeaver version 1.07, a free personal web server for Windows, contains a cross-site scripting (XSS) vulnerability in the ISAPISkeleton.dll component. The application fails to sanitize user-supplied input passed via the query string, allowing arbitrary script injection. The vulnerable endpoint is accessible at /scripts/ISAPISkeleton.dll [1].

Exploitation

An attacker can exploit this vulnerability by crafting a URL that includes malicious script in the query string, e.g., http://127.0.0.1/scripts/ISAPISkeleton.dll?. No authentication or special privileges are required; the attacker only needs to trick a victim into visiting the crafted link, typically via email or a malicious website [1].

Impact

Successful exploitation allows the attacker to execute arbitrary HTML and JavaScript in the context of the victim's browser, potentially leading to session hijacking, cookie theft, defacement, or redirection to malicious sites. The attack affects any user who accesses the crafted URL while the WebWeaver server is running [1].

Mitigation

No official patch or fix has been released for this vulnerability. The vendor's website (http://www.brswebweaver.com) is no longer accessible, and the product appears to be discontinued. Users are advised to discontinue use of BRS WebWeaver or restrict access to the vulnerable ISAPISkeleton.dll via firewall or web server configuration if possible [1].