Exponent CMS Multiple Input Validation Vulnerabilities
BID:23574
Info
Exponent CMS Multiple Input Validation Vulnerabilities
| Bugtraq ID: | 23574 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 20 2007 12:00AM |
| Updated: | Apr 20 2007 06:20PM |
| Credit: | Hamid Ebadi is credited with the discovery of these vulnerabilities. |
| Vulnerable: |
Exponent Exponent CMS 0.96.6 Alpha Exponent Exponent CMS 0.96.5 RC1 |
| Not Vulnerable: | |
Discussion
Exponent CMS Multiple Input Validation Vulnerabilities
Exponent CMS is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input.
Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, execute arbitrary script code in the context of the webserver process, control how the site is rendered to the user, compromise the application, obtain sensitive information, and access or modify data.
Exponent CMS is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input.
Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, execute arbitrary script code in the context of the webserver process, control how the site is rendered to the user, compromise the application, obtain sensitive information, and access or modify data.
Exploit / POC
Exponent CMS Multiple Input Validation Vulnerabilities
To exploit these vulnerabilities, an attacker can use a browser or entice an unsuspecting user into following a malicious URI.
An example URI has been provided:
http://www.example.com/iconspopup.php?icodir=/../../../
The following exploit examples are also available:
To exploit these vulnerabilities, an attacker can use a browser or entice an unsuspecting user into following a malicious URI.
An example URI has been provided:
http://www.example.com/iconspopup.php?icodir=/../../../
The following exploit examples are also available:
Solution / Fix
Exponent CMS Multiple Input Validation Vulnerabilities
Solution:
Currently we are not aware of any vendor-supplied patches for these issues. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for these issues. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].