Rapid Classified Multiple Input Validation Vulnerabilities
BID:21197
Info
Rapid Classified Multiple Input Validation Vulnerabilities
| Bugtraq ID: | 21197 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Nov 20 2006 12:00AM |
| Updated: | Feb 05 2007 04:18PM |
| Credit: | Laurent Gaffie and Benjamin Mosse are credited with the discovery of these vulnerabilities. |
| Vulnerable: |
Rapid Classified Rapid Classified 3.1 |
| Not Vulnerable: | |
Discussion
Rapid Classified Multiple Input Validation Vulnerabilities
Rapid Classified is prone to multiple input-validation issues, including multiple cross-site scripting issues and an SQL-injection issue, because the application fails to properly sanitize user-supplied input.
A successful exploit of these vulnerabilities could allow an attacker to compromise the application, access or modify data, steal cookie-based authentication credentials, or even exploit vulnerabilities in the underlying database implementation. Other attacks are also possible.
Rapid Classified is prone to multiple input-validation issues, including multiple cross-site scripting issues and an SQL-injection issue, because the application fails to properly sanitize user-supplied input.
A successful exploit of these vulnerabilities could allow an attacker to compromise the application, access or modify data, steal cookie-based authentication credentials, or even exploit vulnerabilities in the underlying database implementation. Other attacks are also possible.
Exploit / POC
Rapid Classified Multiple Input Validation Vulnerabilities
Attackers can exploit these issues via a web client.
Example URIs have been provided:
SQL-injection:
http://www.example.com/viewad.asp?id='[sql]
Cross-site scripting:
http://www.example.com/reply.asp?id=[xss]
http://www.example.com/view_print.asp?id=[xss]
http://www.example.com/search.asp?categoryName=1&SH1=[xss]
http://www.example.com/reply.asp?id=50120815480100001&name=[xss]
http://www.example.com/advsearch.asp?zipr=1&D1=0&D4=1&zipOpt=20&dosearch=[xss]
Attackers can exploit these issues via a web client.
Example URIs have been provided:
SQL-injection:
http://www.example.com/viewad.asp?id='[sql]
Cross-site scripting:
http://www.example.com/reply.asp?id=[xss]
http://www.example.com/view_print.asp?id=[xss]
http://www.example.com/search.asp?categoryName=1&SH1=[xss]
http://www.example.com/reply.asp?id=50120815480100001&name=[xss]
http://www.example.com/advsearch.asp?zipr=1&D1=0&D4=1&zipOpt=20&dosearch=[xss]
Solution / Fix
Rapid Classified Multiple Input Validation Vulnerabilities
Solution:
The vendor has released a patch to address this issue. Please see the references for more information.
Rapid Classified Rapid Classified 3.1
Solution:
The vendor has released a patch to address this issue. Please see the references for more information.
Rapid Classified Rapid Classified 3.1
-
Rapid Classified Security_patch_020207.zip
http://www.4u2ges.com/zips/Security_patch_020207.zip
References
Rapid Classified Multiple Input Validation Vulnerabilities
References:
References: