RechnungsZentrale V2 Authent.PHP4 SQL Injection Vulnerability

Bugtraq ID:	17588
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	Apr 18 2006 12:00AM
Updated:	Apr 19 2006 08:26PM
Credit:	GroundZero Security Research and Software Development is credited with the discovery of this vulnerability.
Vulnerable:	nfec.de RechnungsZentrale V2 1.1.3
Not Vulnerable:

RechnungsZentrale V2 Authent.PHP4 SQL Injection Vulnerability

RechnungsZentrale V2 is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query.

A successful exploit could allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying database implementation.

Version 1.1.3 is vulnerable; other versions may also be affected.

RechnungsZentrale V2 Authent.PHP4 SQL Injection Vulnerability

This issue can be exploited through a web client.

An example has been provided:

User: ' OR '1'='1
Password: 1

RechnungsZentrale V2 Authent.PHP4 SQL Injection Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]:[email protected]

RechnungsZentrale V2 Authent.PHP4 SQL Injection Vulnerability

References:

• RechnungsZentrale V2 Web Site (RechnungsZentrale V2)
  
• Security Advisory regarding RechnungsZentrale v2 ([email protected])