Betaparticle Blog Multiple Remote Vulnerabilities
BID:12861
Info
Betaparticle Blog Multiple Remote Vulnerabilities
| Bugtraq ID: | 12861 |
| Class: | Unknown |
| CVE: |
CVE-2005-0853 CVE-2005-0854 |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 21 2005 12:00AM |
| Updated: | Jul 12 2009 10:56AM |
| Credit: | Discovery of these vulnerabilities is credited to farhad koosha <[email protected]>. |
| Vulnerable: |
betaparticle betaparticle blog 3.0 betaparticle betaparticle blog 2.0 |
| Not Vulnerable: |
betaparticle betaparticle blog 4.0 |
Discussion
Betaparticle Blog Multiple Remote Vulnerabilities
betaparticle blog is reported prone to multiple vulnerabilities. The following individual issues are reported:
It is reported that betaparticle blog fails to sufficiently secure the authentication credential database. A remote attacker may exploit this vulnerability to download and disclose the contents of the credential database.
This issue is reported to affect betaparticle blog prior to and including version 3.0.
It is reported that several betaparticle blog scripts may be accessed by a remote unauthenticated attacker and may be employed to upload and delete arbitrary Web server accessible files. A remote attacker may exploit leverage these scripts to deny service for legitimate users or potentially compromise a target computer.
It is reported that these scripts may be leveraged on betaparticle blog versions up to and including version 3.0.
betaparticle blog is reported prone to multiple vulnerabilities. The following individual issues are reported:
It is reported that betaparticle blog fails to sufficiently secure the authentication credential database. A remote attacker may exploit this vulnerability to download and disclose the contents of the credential database.
This issue is reported to affect betaparticle blog prior to and including version 3.0.
It is reported that several betaparticle blog scripts may be accessed by a remote unauthenticated attacker and may be employed to upload and delete arbitrary Web server accessible files. A remote attacker may exploit leverage these scripts to deny service for legitimate users or potentially compromise a target computer.
It is reported that these scripts may be leveraged on betaparticle blog versions up to and including version 3.0.
Exploit / POC
Betaparticle Blog Multiple Remote Vulnerabilities
The following examples area available:
http://www.example.com/bp/database/dbBlogMX.mdb
http://www.example.com/Blog.mdb
http://www.example.com/bp/upload.asp
http://www.example.com/bp/myFiles.asp
The following examples area available:
http://www.example.com/bp/database/dbBlogMX.mdb
http://www.example.com/Blog.mdb
http://www.example.com/bp/upload.asp
http://www.example.com/bp/myFiles.asp
Solution / Fix
Betaparticle Blog Multiple Remote Vulnerabilities
Solution:
It is reported that these issues are addressed in betaparticle blog version 4.0, this is not confirmed. Customers are advised to contact the vendor for further information regarding obtaining and applying appropriate updates.
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
It is reported that these issues are addressed in betaparticle blog version 4.0, this is not confirmed. Customers are advised to contact the vendor for further information regarding obtaining and applying appropriate updates.
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
Betaparticle Blog Multiple Remote Vulnerabilities
References:
References:
- betaparticle blog Homepage (betaparticle blog)
- 2 vulnerabilities in BetaParticle (farhad koosha