SQL injection bug found in TBSource.

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: SQL injection bug found in TBSource.
From: drakomo@xxxxxxxxx
Date: 9 Nov 2007 21:25:48 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

A vulnerability found in the popular bittorrent tracker TBSource code allows an 
attacker to inject SQL queries and read secret information from the database.
The value of 'choice' passed to the script index.php is not properly sanitized. 
When a special tailored value is passed by an attacker, full reading access to 
the database is possible.
Some projects based in TBSource like TBDev and TorrentStrike have been found to 
be affected by the same vulnerability.

Bug discovered by Emiliano Scavuzzo

Prev by Date: [SECURITY] [DSA 1405-1] New zope-cmfplone packages fix arbitrary code execution
Next by Date: iDefense Security Advisory 11.09.07: IBM Informix Dynamic Server DBLANG Directory Traversal Vulnerability
Previous by thread: [SECURITY] [DSA 1405-1] New zope-cmfplone packages fix arbitrary code execution
Next by thread: iDefense Security Advisory 11.09.07: IBM Informix Dynamic Server DBLANG Directory Traversal Vulnerability
Index(es):
- Date
- Thread