lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Date: 24 May 2006 11:08:04 -0000
From: farhadkey@...oo.com
To: bugtraq@...urityfocus.com
Subject: [KAPDA::#44] - NewsCMSLite Login ByPass by Cookie


[KAPDA::#44] - NewsCMSLite Login ByPass by Cookie Vulnerability

KAPDA New advisory

Vulnerable product : NewsCMSLite
Vendor: http://www.katywhitton.com
Vulnerability: Authentication Flaw in 'newsadmin.asp' Lets Remote User Gain Administrative Access .

Date :
--------------------
Found : 2006/05/21
Vendor Contacted : N/A
Release Date : 2006/05/24

About NewsCMSLite :
--------------------
NewsCMSLite is a simple, easy to use and effective Content Management System (CMS).
http://www.katywhitton.com/downloads/newsCMSlite/index.asp

Vulnerability:
--------------------
The 'newsadmin.asp' script grants administrative privileges to the remote user if a certain cookie is set.
A remote user can set a cookie named 'loggedIn' with a value of 'xY1zZoPQ' to gain administrative privileges.

Solution:
--------------------
No patch`s released yet by vendor.

Original Advisory:
--------------------
http://www.kapda.ir/advisory-332.html

Credit :
--------------------
FarhadKey of KAPDA
farhadkey [at} kapda <d0t> net
Kapda - Security Science Researchers Insitute of Iran
http://www.KAPDA.ir


Powered by blists - more mailing lists