Alt-N WebAdmin Multiple Remote Vulnerabilities
BID:12395
Info
Alt-N WebAdmin Multiple Remote Vulnerabilities
| Bugtraq ID: | 12395 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 28 2005 12:00AM |
| Updated: | Jan 28 2005 12:00AM |
| Credit: | Discovery of this vulnerability is credited to David A. P?rez. |
| Vulnerable: |
Altn WebAdmin 3.0.2 |
| Not Vulnerable: |
Altn WebAdmin 3.0.3 |
Discussion
Alt-N WebAdmin Multiple Remote Vulnerabilities
Alt-n WebAdmin is reportedly affected by multiple remote vulnerabilities.
The application is affected by multiple cross-site scripting issues. An attacker may leverage these issues to execute arbitrary HTML and script code in the browser of an unsuspecting user. This may facilitate the theft of cookie-based authentication credentials as well as other attacks.
The application is reportedly also affected by an access validation vulnerability with regards to user accounts. This issue could permit an attacker to modify various aspects of an existing users account.
The vendor has addressed these issues in Alt-N WebAdmin 3.03 and later; earlier versions are reportedly vulnerable.
Alt-n WebAdmin is reportedly affected by multiple remote vulnerabilities.
The application is affected by multiple cross-site scripting issues. An attacker may leverage these issues to execute arbitrary HTML and script code in the browser of an unsuspecting user. This may facilitate the theft of cookie-based authentication credentials as well as other attacks.
The application is reportedly also affected by an access validation vulnerability with regards to user accounts. This issue could permit an attacker to modify various aspects of an existing users account.
The vendor has addressed these issues in Alt-N WebAdmin 3.03 and later; earlier versions are reportedly vulnerable.
Exploit / POC
Alt-N WebAdmin Multiple Remote Vulnerabilities
No exploits are required.
The following proof of concepts demonstrate the two cross-site scripting issues:
http://www.example.com/WebAdmin/useredit_account.wdm?user=%3Cscript%3Ealert('test')%3C/script%3E
http://www.example.com/WebAdmin/modalframe.wdm?file=http://other_server/page.wdm
The following proof of concept demonstrates the access validation issue:
http://www.example.com/WebAdmin/useredit_account.wdm?user=otheruser@domain
No exploits are required.
The following proof of concepts demonstrate the two cross-site scripting issues:
http://www.example.com/WebAdmin/useredit_account.wdm?user=%3Cscript%3Ealert('test')%3C/script%3E
http://www.example.com/WebAdmin/modalframe.wdm?file=http://other_server/page.wdm
The following proof of concept demonstrates the access validation issue:
http://www.example.com/WebAdmin/useredit_account.wdm?user=otheruser@domain
Solution / Fix
Alt-N WebAdmin Multiple Remote Vulnerabilities
Solution:
The vendor has addressed these issues in WebAdmin 3.03 and later.
Altn WebAdmin 3.0.2
Solution:
The vendor has addressed these issues in WebAdmin 3.03 and later.
Altn WebAdmin 3.0.2
References
Alt-N WebAdmin Multiple Remote Vulnerabilities
References:
References:
- WebAdmin Product Homepage (Alt-N)
- Multiple vulnerabilities in Alt-N WebAdmin <= 3.0.2 (David A. P?rez