Error when trying to edit directories : Helpdesk platform

C

Corey Smiley

started a topic over 2 years ago

Every time I try to edit my directory entries this pops up. Any ideas.

Security Warning ! Either you or another remote user has sent an unauthorized HTTP POST request to this phone.

This request has been skipped and the authenticated session has been closed.

You have to reauthenticate yourself in order to use the web interface again.

Best Answer

S

Sidaty Khalihina said over 2 years ago

We identified the issue. This is unfortunately a BUG in the software, but we have a workaround:

- disable Advanced -> QoS/Security (TAB) -> "Use hidden Tags"
- disable Advanced -> QoS/Security (TAB) -> "Restrict URI queries"

By disabling this feature settings, you will open a cross-scripting vulnerability, but we hope that your PC is secure and that the phone Web User Interface is not reachable from the Internet.

This bug has been already fixed and will be implemented in the next versions.

S

Sidaty Khalihina

said over 2 years ago

Answer

We identified the issue. This is unfortunately a BUG in the software, but we have a workaround:

- disable Advanced -> QoS/Security (TAB) -> "Use hidden Tags"
- disable Advanced -> QoS/Security (TAB) -> "Restrict URI queries"

By disabling this feature settings, you will open a cross-scripting vulnerability, but we hope that your PC is secure and that the phone Web User Interface is not reachable from the Internet.

This bug has been already fixed and will be implemented in the next versions.

C

Corey Smiley

said over 2 years ago

I found that exact answer in the forums this morning. Thanks for the help.

S

Sidaty Khalihina

said over 2 years ago

you are welcome.

U

Uwe Kleine-König

said 9 months ago

I hit this problem today on an snom370 with firmware version 8.7.5.35 which according to wiki.snom.com is the recent firmware. Is this bug still unfixed or reintroduced?