Geeklog Lib-sessions.PHP Authorization Bypass Vulnerability
BID:17010
Info
Geeklog Lib-sessions.PHP Authorization Bypass Vulnerability
| Bugtraq ID: | 17010 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 07 2006 12:00AM |
| Updated: | Mar 09 2006 11:25PM |
| Credit: | Konstantin Dyakoff is credited with the discovery of this vulnerability. |
| Vulnerable: |
Geeklog Geeklog 1.4 sr1 Geeklog Geeklog 1.3.11 sr4 Geeklog Geeklog 1.3.11 sr3 Geeklog Geeklog 1.3.11 sr1 Geeklog Geeklog 1.3.11 rc1 Geeklog Geeklog 1.3.11 Geeklog Geeklog 1.3.10 Geeklog Geeklog 1.3.9 sr3 Geeklog Geeklog 1.3.9 sr2 Geeklog Geeklog 1.3.9 sr1 Geeklog Geeklog 1.3.9 Geeklog Geeklog 1.3.8 rc2 Geeklog Geeklog 1.3.8 rc1 Geeklog Geeklog 1.3.8 -1sr2 Geeklog Geeklog 1.3.8 -1sr1 Geeklog Geeklog 1.3.8 -1 Geeklog Geeklog 1.3.8 Geeklog Geeklog 1.3.7 sr2 Geeklog Geeklog 1.3.7 sr1 Geeklog Geeklog 1.3.7 Geeklog Geeklog 1.3.5 sr2 Geeklog Geeklog 1.3.5 sr1 Geeklog Geeklog 1.3.5 Geeklog Geeklog 1.3 |
| Not Vulnerable: |
Geeklog Geeklog 1.4.0sr2 Geeklog Geeklog 1.3.9sr5 Geeklog Geeklog 1.3.11sr5 |
Discussion
Geeklog Lib-sessions.PHP Authorization Bypass Vulnerability
Geeklog is prone to an authorization-bypass vulnerability. This issue is due to a failure in the application to properly verify user-supplied input.
An attacker can exploit this vulnerability to bypass authentication and gain access as an administrative user; this may facilitate a compromise of the application.
Please see BID 16755 - Geeklog Multiple Input Validation Vulnerabilities, which may be related to this vulnerability.
Geeklog is prone to an authorization-bypass vulnerability. This issue is due to a failure in the application to properly verify user-supplied input.
An attacker can exploit this vulnerability to bypass authentication and gain access as an administrative user; this may facilitate a compromise of the application.
Please see BID 16755 - Geeklog Multiple Input Validation Vulnerabilities, which may be related to this vulnerability.
Exploit / POC
Geeklog Lib-sessions.PHP Authorization Bypass Vulnerability
No exploit is required.
No exploit is required.
Solution / Fix
Geeklog Lib-sessions.PHP Authorization Bypass Vulnerability
Solution:
The vendor has released versions 1.4.0sr2, 1.3.11sr5, and 1.3.9sr5 which are not exploitable.
Geeklog Geeklog 1.3
Geeklog Geeklog 1.3.10
Geeklog Geeklog 1.3.11 sr1
Geeklog Geeklog 1.3.11 sr4
Geeklog Geeklog 1.3.11 sr3
Geeklog Geeklog 1.3.11
Geeklog Geeklog 1.3.11 rc1
Geeklog Geeklog 1.3.5
Geeklog Geeklog 1.3.5 sr2
Geeklog Geeklog 1.3.5 sr1
Geeklog Geeklog 1.3.7 sr2
Geeklog Geeklog 1.3.7
Geeklog Geeklog 1.3.7 sr1
Geeklog Geeklog 1.3.8 rc2
Geeklog Geeklog 1.3.8 -1
Geeklog Geeklog 1.3.8
Geeklog Geeklog 1.3.8 rc1
Geeklog Geeklog 1.3.8 -1sr2
Geeklog Geeklog 1.3.8 -1sr1
Geeklog Geeklog 1.3.9 sr2
Geeklog Geeklog 1.3.9 sr1
Geeklog Geeklog 1.3.9 sr3
Geeklog Geeklog 1.3.9
Geeklog Geeklog 1.4 sr1
Solution:
The vendor has released versions 1.4.0sr2, 1.3.11sr5, and 1.3.9sr5 which are not exploitable.
Geeklog Geeklog 1.3
-
Geeklog Geeklog 1.4.0sr2
http://www.geeklog.net/filemgmt/visit.php?lid=686
Geeklog Geeklog 1.3.10
-
Geeklog Geeklog 1.4.0sr2
http://www.geeklog.net/filemgmt/visit.php?lid=686
Geeklog Geeklog 1.3.11 sr1
-
Geeklog Geeklog 1.4.0sr2
http://www.geeklog.net/filemgmt/visit.php?lid=686
Geeklog Geeklog 1.3.11 sr4
-
Geeklog Geeklog 1.4.0sr2
http://www.geeklog.net/filemgmt/visit.php?lid=686
Geeklog Geeklog 1.3.11 sr3
-
Geeklog Geeklog 1.4.0sr2
http://www.geeklog.net/filemgmt/visit.php?lid=686
Geeklog Geeklog 1.3.11
-
Geeklog Geeklog 1.4.0sr2
http://www.geeklog.net/filemgmt/visit.php?lid=686
Geeklog Geeklog 1.3.11 rc1
-
Geeklog Geeklog 1.4.0sr2
http://www.geeklog.net/filemgmt/visit.php?lid=686
Geeklog Geeklog 1.3.5
-
Geeklog Geeklog 1.4.0sr2
http://www.geeklog.net/filemgmt/visit.php?lid=686
Geeklog Geeklog 1.3.5 sr2
-
Geeklog Geeklog 1.4.0sr2
http://www.geeklog.net/filemgmt/visit.php?lid=686
Geeklog Geeklog 1.3.5 sr1
-
Geeklog Geeklog 1.4.0sr2
http://www.geeklog.net/filemgmt/visit.php?lid=686
Geeklog Geeklog 1.3.7 sr2
-
Geeklog Geeklog 1.4.0sr2
http://www.geeklog.net/filemgmt/visit.php?lid=686
Geeklog Geeklog 1.3.7
-
Geeklog Geeklog 1.4.0sr2
http://www.geeklog.net/filemgmt/visit.php?lid=686
Geeklog Geeklog 1.3.7 sr1
-
Geeklog Geeklog 1.4.0sr2
http://www.geeklog.net/filemgmt/visit.php?lid=686
Geeklog Geeklog 1.3.8 rc2
-
Geeklog Geeklog 1.4.0sr2
http://www.geeklog.net/filemgmt/visit.php?lid=686
Geeklog Geeklog 1.3.8 -1
-
Geeklog Geeklog 1.4.0sr2
http://www.geeklog.net/filemgmt/visit.php?lid=686
Geeklog Geeklog 1.3.8
-
Geeklog Geeklog 1.4.0sr2
http://www.geeklog.net/filemgmt/visit.php?lid=686
Geeklog Geeklog 1.3.8 rc1
-
Geeklog Geeklog 1.4.0sr2
http://www.geeklog.net/filemgmt/visit.php?lid=686
Geeklog Geeklog 1.3.8 -1sr2
-
Geeklog Geeklog 1.4.0sr2
http://www.geeklog.net/filemgmt/visit.php?lid=686
Geeklog Geeklog 1.3.8 -1sr1
-
Geeklog Geeklog 1.4.0sr2
http://www.geeklog.net/filemgmt/visit.php?lid=686
Geeklog Geeklog 1.3.9 sr2
-
Geeklog Geeklog 1.4.0sr2
http://www.geeklog.net/filemgmt/visit.php?lid=686
Geeklog Geeklog 1.3.9 sr1
-
Geeklog Geeklog 1.4.0sr2
http://www.geeklog.net/filemgmt/visit.php?lid=686
Geeklog Geeklog 1.3.9 sr3
-
Geeklog Geeklog 1.4.0sr2
http://www.geeklog.net/filemgmt/visit.php?lid=686
Geeklog Geeklog 1.3.9
-
Geeklog Geeklog 1.4.0sr2
http://www.geeklog.net/filemgmt/visit.php?lid=686
Geeklog Geeklog 1.4 sr1
-
Geeklog Geeklog 1.4.0sr2
http://www.geeklog.net/filemgmt/visit.php?lid=686
References
Geeklog Lib-sessions.PHP Authorization Bypass Vulnerability
References:
References:
- Geeklog 1.4.0sr2, 1.3.11sr5, 1.3.9sr5 (Geeklog)
- Geeklog Homepage (Geeklog)