Major Cpanel Expliot HTML Injection

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Major Cpanel Expliot HTML Injection
From: Virtual Nova Web Hosting services virtualnova.net <verb0s@xxxxxxxxxxxxxxx>
Date: 9 Jun 2004 04:04:51 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm


Major Bug found 6/7/04

Discovered by Verb0s 

Reseller accounts with cpanel, in the password modification page, can insert a 
basic injection 
ex:http://(domain):2086/scripts/passwd?password=<>&domain=<>&user=<>

The code will modify all the mysql database passwords, in which the reseller 
shouldnb't have permissions. From there, someone could take over someones site 
that may be sql based, on the same server as them. 

How to fix the problem:

After my immediate contact with cpanel. they updated and fixed all permission 
problems : 6/8/04

Update your Cpanel ASAP

Prev by Date: Advisory 09/2004: More CVS remote vulnerabilities
Next by Date: TSSA-2004-010 - squid
Previous by thread: Advisory 09/2004: More CVS remote vulnerabilities
Next by thread: TSSA-2004-010 - squid
Index(es):
- Date
- Thread