OSVDB ID: 15787

Title: ACS Blog inc_login_check.asp Cookie Modification Admin Privilege Escalation

Info

Disclosure

Apr 23, 2005

Discovery

Unknown

Dates

Exploit

Apr 23, 2005

Solution

Unknown

Description

ACS Blog contains a flaw that may allow a remote attacker to gain access to unauthorized privileges. The issue is triggered when sending a specially crafted cookie to the "inc_login_check.asp" script, which may allow a remote attacker to gain access to administrative privileges, resulting in a loss of integrity.

Classification

Location: Remote / Network Access
Attack Type: Authentication Management
Impact: Loss of Integrity
Exploit: Exploit Public
OSVDB: Web Related

Solution

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Products

ASPPress	ACS Blog	1.1.3
		1.1.2
		1.1
		1.0.x
		0.8

References

Security Tracker: 1013795
Secunia Advisory ID: 15105
Related OSVDB ID: 15787
CVE ID: 2005-1288 (see also: NVD)
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-04/0381.html
http://marc.theaimsgroup.com/?l=bugtraq&m=111428190921388&w=2
Packet Storm: http://packetstormsecurity.org/0503-advisories/acsXSS.txt
Vendor URL: http://www.asppress.com/

Credit

farhad koosha - farhadkeyyahoo.com -

Direct URL: http://osvdb.org/15787

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

ASPPress

ACS Blog

References

Credit