[eVuln] Maian Support Authentication Bypass

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: [eVuln] Maian Support Authentication Bypass
From: alex@xxxxxxxxx
Date: 28 Mar 2006 07:15:21 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

New eVuln Advisory:
Maian Support Authentication Bypass
http://evuln.com/vulns/103/summary.html

--------------------Summary----------------
eVuln ID: EV0103
CVE: CVE-2006-1259
Software: Maian Support
Sowtware's Web Site: http://www.maianscriptworld.co.uk/
Versions: 1.0
Critical Level: Moderate
Type: SQL Injection
Class: Remote
Status: Unpatched. Developer(s) contacted.
PoC/Exploit: Available
Solution: Not Available
Discovered by: Aliaksandr Hartsuyeu (eVuln.com)

-----------------Description---------------
Vulnerable script: admin/index.php

Parameters email, pass are not properly sanitized before being used in SQL 
query. This can be used to bypass authentication using SQL injection or make 
any SQL query by injecting arbitrary SQL code.

Condition: magic_quotes_gpc = off

--------------PoC/Exploit----------------------
Available at: http://evuln.com/vulns/103/exploit.html

--------------Solution---------------------
No Patch available.

--------------Credit-----------------------
Discovered by: Aliaksandr Hartsuyeu (eVuln.com)


Regards,
Aliaksandr Hartsuyeu
http://evuln.com - Penetration Testing Services
.

Prev by Date: [eVuln] Maian Events SQL Injection Vulnerability
Next by Date: Re: SendGate: Sendmail Multiple Vulnerabilities (Race Condition DoS, Memory Jumps, Integer Overflow)
Previous by thread: [eVuln] Maian Events SQL Injection Vulnerability
Next by thread: Genius VideoCAM NB Local Privilege Escalation
Index(es):
- Date
- Thread