CVE-2009-1881

Vulnerability

IMG-BBS from MT312, a web log system for posting pictures via email from mobile phones, contains a cross-site scripting (XSS) vulnerability in model.php. Versions of IMG-BBS (imgbbs.lzh) that contain model.php with a timestamp prior to May 21, 2009 are affected [1][2]. The vulnerability allows injection of arbitrary web script or HTML via unspecified vectors [1].

Exploitation

An attacker can exploit this vulnerability by crafting a malicious URL or input that, when processed by the vulnerable model.php, injects script code. The attack requires no authentication and can be delivered over the network, but the user must interact with the crafted link or content [2]. The exact attack vector is not detailed in the references, but typical XSS exploitation involves tricking a user into clicking a specially crafted link.

Impact

Successful exploitation allows an attacker to execute arbitrary script in the user's web browser within the context of the vulnerable site [1][2]. This can lead to information disclosure, session hijacking, or other client-side attacks. The CVSS v2 base score is 4.3 (Medium) with partial integrity impact and no confidentiality or availability impact [2].

Mitigation

The vendor, MT312, has released an updated version of IMG-BBS (imgbbs.lzh) that fixes the vulnerability. Users should update to the latest version [1][2]. No workarounds are mentioned in the references. The vulnerability is not listed in CISA's Known Exploited Vulnerabilities catalog.