OSVDB ID: 13164

Title: Comersus ASP Shopping Cart comersus_backoffice_install10.asp Admin Authentication Bypass

Info

Disclosure

Jan 21, 2005

Discovery

Jan 17, 2005

Dates

Exploit

Jan 21, 2005

Solution

Unknown

Description

ASP Shopping Cart contains a flaw that may allow a malicious user to gain unauthorized administrative rights. The issue is triggered when the comersus_backoffice_install10.asp file is accessed directly, which grants administrative rights without any validation. It is possible that the flaw may allow unauthorized administrative access resulting in a loss of integrity.

Classification

Location: Remote / Network Access
Attack Type: Authentication Management
Impact: Loss of Integrity
Exploit: Exploit Public
OSVDB: Web Related

Solution

Upgrade to version 6.0.2 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Comersus Open Technologies

ASP Shopping Cart

6.0

References

Security Tracker: 1012989
Related OSVDB ID: 13165 13166 13167 13168
Secunia Advisory ID: 13964
CVE ID: 2005-0301 (see also: NVD)
Mail List Post: http://marc.theaimsgroup.com/?l=bugtraq&m=110636597832556&w=2
Packet Storm: http://packetstormsecurity.org/0501-advisories/Comersus60.txt
Vendor URL: http://www.comersus.com/
Vendor Specific Advisory URL: http://www.comersus.org/forum/displayMessage.asp?mid=32753

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/13164