AppIntellect SpotLight CRM Login.ASP SQL Injection Vulnerability

Bugtraq ID:	21521
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	Dec 09 2006 12:00AM
Updated:	Jan 08 2007 08:51PM
Credit:	ajann is credited with the discovery of this vulnerability.
Vulnerable:	AppIntellect SpotLight CRM beta
Not Vulnerable:	AppIntellect SpotLight CRM 1.0

AppIntellect SpotLight CRM Login.ASP SQL Injection Vulnerability

AppIntellect SpotLight CRM is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query.

Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database implementation.

AppIntellect SpotLight CRM Login.ASP SQL Injection Vulnerability

An attacker can exploit this issue via a web client.

The following example demonstrates this issue:

login.asp UserName: ';update login set password='kro'--
login.asp UserName: ';update login set loginName='kro'--

AppIntellect SpotLight CRM Login.ASP SQL Injection Vulnerability

Solution:
The vendor has released an update to address this issue. Please see the references for more information.

AppIntellect SpotLight CRM Login.ASP SQL Injection Vulnerability

References:

• SpotLight CRM (AppIntellect)