OzzyWork Galeri Input Validation Hole in 'admin_default.asp' Permits SQL Injection
|
|
SecurityTracker Alert ID: 1016053 |
|
SecurityTracker URL: http://securitytracker.com/id/1016053
|
|
CVE Reference:
CVE-2006-2301
(Links to External Site)
|
Updated: Dec 5 2009
|
Original Entry Date: May 10 2006
|
Impact:
Disclosure of system information, Disclosure of user information, User access via network
|
Exploit Included: Yes
|
|
Description:
A vulnerability was reported in OzzyWork Galeri. A remote user can inject SQL commands.
The 'admin_default.asp' script does not properly validate user-supplied input. A remote user can supply a specially crafted parameter value to execute SQL commands on the underlying database.
Some demonstration exploit login and password values are provided:
'or'
'or"1=1'
'or"='
Dj ReMix discovered this vulnerability.
|
Impact:
A remote user can execute SQL commands on the underlying database.
|
Solution:
No solution was available at the time of this entry.
|
Cause:
Input validation error
|
Underlying OS:
Windows (Any)
|
|
Message History:
None.
|
Source Message Contents
|
Date: Tue, 09 May 2006 11:30:10 +0000
Subject: # MHG Security Team --- OzzyWork Gallery SQL Injection
|
# Milli-Harekat Advisory ( www.milli-harekat.org )
# OzzyWork Galeri Admin SQL Injection
# Risk : High
# Script : OzzyWork Gallery All Version
# Credits : Dj ReMix
# Thanks : ßy Korsan , ESKOBAR , Poizonb0x , TR_IP
OzzyWork Gallery Admin Page's www.victim.com/[Ozzywork Path ]/admin_default.asp
Login and password :
'or'
'or"1=1'
'or"='
|
|
