LinksCaffe no checker at admin

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: LinksCaffe no checker at admin
From: hoangyenxinhdep@xxxxxxxxx
Date: 29 Aug 2006 04:57:09 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

Gonafish.com LinksCaffe 3.0 is free link indexing directory, we found that the 
file admin1953.php can be accessed directly to get full administration rights 
without password and username. 

Proof of exploit:
http://www.example.com/[path_to_linksCaffe]/Admin/admin1953.php

Or the images of mirror
http://vietnamsecurity.googlepages.com/1.JPG
http://vietnamsecurity.googlepages.com/2.JPG
http://vietnamsecurity.googlepages.com/3.JPG

Affected
LinksCaffe 2.0, 3.0, Pro no test

Fix : Easy to fix, just put checker to the file

HoangYenXinhDep
Vietnam Security Team
http://www.vnsecurity.com

Prev by Date: [ MDKSA-2006:154 ] - Updated lesstif packages fix potential local root vulnerability
Next by Date: CYBSEC - Security Advisory: Microsoft Windows DHCP Client Service Remote Buffer Overflow
Previous by thread: [ MDKSA-2006:154 ] - Updated lesstif packages fix potential local root vulnerability
Next by thread: CYBSEC - Security Advisory: Microsoft Windows DHCP Client Service Remote Buffer Overflow
Index(es):
- Date
- Thread