MegaBBS Discloses Private Messages to Other Users
SecurityTracker Alert ID: 1015452|
SecurityTracker URL: http://securitytracker.com/id/1015452
(Links to External Site)
Date: Jan 9 2006
Disclosure of user information|
Fix Available: Yes Vendor Confirmed: Yes Exploit Included: Yes |
Version(s): 2.1 and prior|
Hamid Ebadi reported a vulnerability in MegaBBS. A remote user can read the private messages of other users.|
A remote user can exploit a flaw in the 'send-private-message.asp' function to view private messages belonging to other users by modifying the 'replyid' value.
A demonstration exploit URL is provided:
A remote user can view the private messages of another user.|
The vendor has issued a fix, available at:|
Vendor URL: www.pd9soft.com/megabbs-support/index.asp (Links to External Site)
Access control error|
Source Message Contents
Date: Sat, 7 Jan 2006 20:06:23 -0800 (PST)|
Subject: MegaBBS ASP Forum Software Vulnerabilities
MegaBBS ASP Forum Software Vulnerabilitie
A complete, fully featured ASP website system.
Includes an extremely powerful forum, calendars,
polls, and photo albums.
Best of all, it's completely free! Find out why
MegaBBS is one of the fastest growing ASP messaging
portals available today.http://www.pd9soft.com
The information has been provided by Hamid Ebadi
(Hamid Network Security Team):firstname.lastname@example.org.
The original article can be found
MegaBBS 2.1 and below
A bug in the send-private-message funcationality has
been discovered that may disclose other members
you can change replyid value and read other users
patch & advisory
and update "send-private-message.asp"
Yahoo! DSL – Something to write home about.
Just $16.99/mo. or less.