EnthrallWeb Multiple Products Myprofile.ASP Arbitrary User Password Change Vulnerability

Bugtraq ID:	21739
Class:	Design Error
CVE:
Remote:	Yes
Local:	No
Published:	Dec 26 2006 12:00AM
Updated:	Jan 02 2007 07:16PM
Credit:	ajann is credited with the discovery of this vulnerability.
Vulnerable:	Enthrallweb eNews 1.0 Enthrallweb eCoupons 1.0 Enthrallweb eClassifieds 1.0
Not Vulnerable:

EnthrallWeb Multiple Products Myprofile.ASP Arbitrary User Password Change Vulnerability

Multiple Enthrallweb applications are prone to a vulnerability that may permit attackers to change arbitrary passwords.

Exploiting this issue may allow an attacker to change an arbitrary user's password, bypass the authentication mechanism, and gain unauthorized access to the affected applications. This may lead to other attacks.

EnthrallWeb Multiple Products Myprofile.ASP Arbitrary User Password Change Vulnerability

An attacker can exploit this issue via a web client.

The following exploit code is available:

• /data/vulnerabilities/exploits/21739-eClassifieds.html
• /data/vulnerabilities/exploits/21739-eCoupons.html
• /data/vulnerabilities/exploits/21739-eNews.html

EnthrallWeb Multiple Products Myprofile.ASP Arbitrary User Password Change Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]:[email protected].

EnthrallWeb Multiple Products Myprofile.ASP Arbitrary User Password Change Vulnerability

References:

• eClassifieds Homepage (Enthrallweb)
  
• eCoupons Homepage (Enthrallweb)
  
• eNews Homepage (Enthrallweb)
  
• Vendor Home Page (Enthrallweb)