lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: 24 May 2006 11:08:04 -0000 From: farhadkey@...oo.com To: bugtraq@...urityfocus.com Subject: [KAPDA::#44] - NewsCMSLite Login ByPass by Cookie [KAPDA::#44] - NewsCMSLite Login ByPass by Cookie Vulnerability KAPDA New advisory Vulnerable product : NewsCMSLite Vendor: http://www.katywhitton.com Vulnerability: Authentication Flaw in 'newsadmin.asp' Lets Remote User Gain Administrative Access . Date : -------------------- Found : 2006/05/21 Vendor Contacted : N/A Release Date : 2006/05/24 About NewsCMSLite : -------------------- NewsCMSLite is a simple, easy to use and effective Content Management System (CMS). http://www.katywhitton.com/downloads/newsCMSlite/index.asp Vulnerability: -------------------- The 'newsadmin.asp' script grants administrative privileges to the remote user if a certain cookie is set. A remote user can set a cookie named 'loggedIn' with a value of 'xY1zZoPQ' to gain administrative privileges. Solution: -------------------- No patch`s released yet by vendor. Original Advisory: -------------------- http://www.kapda.ir/advisory-332.html Credit : -------------------- FarhadKey of KAPDA farhadkey [at} kapda <d0t> net Kapda - Security Science Researchers Insitute of Iran http://www.KAPDA.ir
Powered by blists - more mailing lists