OzzyWork Galeri Input Validation Hole in 'admin_default.asp' Permits SQL Injection
|
|
SecurityTracker Alert ID: 1016053
|
|
SecurityTracker URL: http://securitytracker.com/id?1016053
|
|
CVE Reference: GENERIC-MAP-NOMATCH
(Links to External Site)
|
Date: May 10 2006
|
Impact: Disclosure of system information, Disclosure of user information, User access via network
|
Exploit Included: Yes
|
Description: A vulnerability was reported in OzzyWork Galeri. A remote user can inject SQL commands.
The 'admin_default.asp' script does not properly validate user-supplied input. A remote user can supply a specially crafted parameter
value to execute SQL commands on the underlying database.
Some demonstration exploit login and password values are provided:
'or'
'or"1=1'
'or"='
Dj
ReMix discovered this vulnerability.
|
Impact: A remote user can execute SQL commands on the underlying database.
|
Solution: No solution was available at the time of this entry.
|
Cause: Input validation error
|
Underlying OS: Windows (Any)
|
Reported By: Dj_ReMix_20@hotmail.com
|
Message History:
None.
|
Source Message Contents
|
Date: Tue, 09 May 2006 11:30:10 +0000
From: Dj_ReMix_20@hotmail.com
Subject: # MHG Security Team --- OzzyWork Gallery SQL Injection
|
# Milli-Harekat Advisory ( www.milli-harekat.org )
# OzzyWork Galeri Admin SQL Injection
# Risk : High
# Script : OzzyWork Gallery All Version
# Credits : Dj ReMix
# Thanks : ßy Korsan , ESKOBAR , Poizonb0x , TR_IP
OzzyWork Gallery Admin Page's www.victim.com/[Ozzywork Path ]/admin_default.asp
Login and password :
'or'
'or"1=1'
'or"='
|
|
