Cross-Site Leak - Frame Counting
Description
It is possible to determine from an external site whether or not a user is logged into the platform by counting the frames loaded when opening the page. The user must have logged into a site with a malicious frame counting script.
Impact
Determine if a specific user has access to the platform and thus collect targets for spearphishing attacks.
Recommendation
Load the same amount of frames in all application load cases.
Threat
Attacker on the Internet sending malicious links.
Expected Remediation Time
⏱️ 120 minutes.
Requirements
134 - Store passwords with salt135 - Passwords with random salt185 - Encrypt sensitive informationFixes
Score
Default score using CVSS 4.0. It may change depending on the context of the src.
Base 4.0
Attack vector
N
Attack complexity
L
Attack requirements
N
Privileges required
N
User interaction
P
Confidentiality (VC)
L
Integrity (VI)
N
Availability (VA)
N
Confidentiality (SC)
N
Integrity (SI)
N
Availability (SA)
N
Threat 4.0
Exploit maturity
X
Vector string
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N