NukeSentinel Multiple SQL Injection Vulnerabilities
BID:22629
Info
NukeSentinel Multiple SQL Injection Vulnerabilities
| Bugtraq ID: | 22629 |
| Class: | Input Validation Error |
| CVE: |
CVE-2007-1171 |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 20 2007 12:00AM |
| Updated: | May 12 2015 07:34PM |
| Credit: | gmdarkfig is credited with the discovery of these vulnerabilities. |
| Vulnerable: |
NukeScripts NukeSentinel 2.5.11 NukeScripts NukeSentinel 2.5.6 NukeScripts NukeSentinel 2.5.5 |
| Not Vulnerable: |
NukeScripts NukeSentinel 2.5.12 |
Discussion
NukeSentinel Multiple SQL Injection Vulnerabilities
NukeSentinel is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query.
A successful exploit could allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying database implementation.
NOTE: The vendor refutes some of the reported issues, indicating that certain scripts and parameters are not available in the affected version or require specific conditions to become vulnerable.
NukeSentinel is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query.
A successful exploit could allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying database implementation.
NOTE: The vendor refutes some of the reported issues, indicating that certain scripts and parameters are not available in the affected version or require specific conditions to become vulnerable.
Exploit / POC
Solution / Fix
NukeSentinel Multiple SQL Injection Vulnerabilities
Solution:
The vendor released NukeSentinel 2.5.12 to address the 'nsbypass.php' issue. Currently we are unaware if this release also addresses the 'nukesentinel.php' issue. Please see the references for more information.
Solution:
The vendor released NukeSentinel 2.5.12 to address the 'nsbypass.php' issue. Currently we are unaware if this release also addresses the 'nukesentinel.php' issue. Please see the references for more information.
References
NukeSentinel Multiple SQL Injection Vulnerabilities
References:
References:
- Download Profile: NukeSentinel(tm) 2.5.12 66-81 (NukeScripts)
- Critical Sql Injection in NukeSentinel 2.5.11 (Janek Vind "waraxe" )
- NukeSentinel 2.5.05 (nsbypass.php) Blind SQL Injection Exploit ([email protected])
- NukeSentinel 2.5.05 (nukesentinel.php) File Disclosure Exploit ([email protected])
- Re: NukeSentinel Bypass SQL Injection & Nuke Evolution <= 2.0.3 SQL Injections ([email protected])
- NukeSentinel Web Site (NukeSentinel)