Merchant Order Form 1.2 Order Log Permissions Vulnerability
BID:2021
Info
Merchant Order Form 1.2 Order Log Permissions Vulnerability
| Bugtraq ID: | 2021 |
| Class: | Configuration Error |
| CVE: |
CVE-1999-0605 |
| Remote: | Yes |
| Local: | Yes |
| Published: | Apr 20 1999 12:00AM |
| Updated: | Jul 11 2009 03:56AM |
| Credit: | Posted to BugTraq on April 20, 1999 by Joe <[email protected]> |
| Vulnerable: |
Russell G. Alexander Merchant Order Form 1.2 |
| Not Vulnerable: | |
Discussion
Merchant Order Form 1.2 Order Log Permissions Vulnerability
Merchant Order Form is a shareware shopping cart program. Poor installations leave the order log file world readable, allowing retrieval of sensitive information such as customer order history and credit card information. This is more of a configuration issue than a vulnerability in the software, although leaving credit card information in plain text and allowing it to reside in a world readable directory is a poor practice.
Merchant Order Form is a shareware shopping cart program. Poor installations leave the order log file world readable, allowing retrieval of sensitive information such as customer order history and credit card information. This is more of a configuration issue than a vulnerability in the software, although leaving credit card information in plain text and allowing it to reside in a world readable directory is a poor practice.
Exploit / POC
Merchant Order Form 1.2 Order Log Permissions Vulnerability
The exposed log file is named order_log_v12.dat (also order_log.dat) an can be retrieved by HTTP once the directory it resides in is determined. This is typically "order", "orders", or something similar.
The exposed log file is named order_log_v12.dat (also order_log.dat) an can be retrieved by HTTP once the directory it resides in is determined. This is typically "order", "orders", or something similar.
References
Merchant Order Form 1.2 Order Log Permissions Vulnerability
References:
References:
- Merchant Order Form - WebWare (The Rainbow Garden)