BoastMachine v3.0 platinum - Session İd Hacking

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: BoastMachine v3.0 platinum - Session İd Hacking
From: "vagrant Pest" <kernel-32@xxxxxxxxxxx>
Date: Tue, 22 May 2007 09:01:27 +0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

Vagrant - E-hack.org (05.22.2007)

BoastMachine v3.0 platinum - Session İd Hacking

After the login into the site which alllows new user registration. Siteuser's data which is entered to change the topic, can be changed by anotheruser, and that is a security hole because of ID interchangeability in URLaddress space.

If the changed topic belongs to the admin it doedn't affect the free loginand site user has an authority to make changes and cop the topics.


------- >>>

Vulnerable;

http://www.xxx.com/login.php

http://www.xxx.com/user.php?action=list_posts

Edit posts;
http://www.e-hack.org/user.php?action=list_posts

Post title edit;
http://www.xxx.com/user.php?action=edit_post&blog=1&id=(155) = (İd)

New İd;
http://www.xxx.com/user.php?action=edit_post&blog=1&id=(154) = (İd)


Credits : Vagrant
Contact : kernel-32@xxxxxxxxxxx
Site : www.e-hack.org

_________________________________________________________________

Siz de iletişimin evrimine katılın!http://www.communicationevolved.com/tr-tr/

Prev by Date: Magic iso heap over flow <Help>
Next by Date: NOD32 Antivirus Long Path Name Stack Overflow Vulnerabilities
Previous by thread: Re: Magic iso heap over flow <Help>
Next by thread: NOD32 Antivirus Long Path Name Stack Overflow Vulnerabilities
Index(es):
- Date
- Thread