ADempiere Bazaar WebUI Unspecified Authentication Bypass Vulnerability
BID:25091
Info
ADempiere Bazaar WebUI Unspecified Authentication Bypass Vulnerability
| Bugtraq ID: | 25091 |
| Class: | Access Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jul 27 2007 12:00AM |
| Updated: | Jul 30 2007 04:15PM |
| Credit: | Bahman Movaqar is credited with the discovery of this issue. |
| Vulnerable: |
ADempiere Bazaar ADempiere Bazaar 3.3 |
| Not Vulnerable: |
ADempiere Bazaar ADempiere Bazaar 3.3.beta (Victoria E |
Discussion
ADempiere Bazaar WebUI Unspecified Authentication Bypass Vulnerability
ADempiere Bazaar is prone to an unspecified authentication-bypass vulnerability.
Exploiting this issue could allow an attacker to access certain system-level windows of the application. This may facilitate a compromise of the vulnerable application.
The vulnerability affects versions prior to ADempiere Bazaar 3.3 beta (Victoria Edition).
ADempiere Bazaar is prone to an unspecified authentication-bypass vulnerability.
Exploiting this issue could allow an attacker to access certain system-level windows of the application. This may facilitate a compromise of the vulnerable application.
The vulnerability affects versions prior to ADempiere Bazaar 3.3 beta (Victoria Edition).
Exploit / POC
ADempiere Bazaar WebUI Unspecified Authentication Bypass Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Solution / Fix
ADempiere Bazaar WebUI Unspecified Authentication Bypass Vulnerability
Solution:
The vendor released ADempiere Bazaar 3.3 beta (Victoria Edition) to address this issue. Please see the references for more information.
ADempiere Bazaar ADempiere Bazaar 3.3
Solution:
The vendor released ADempiere Bazaar 3.3 beta (Victoria Edition) to address this issue. Please see the references for more information.
ADempiere Bazaar ADempiere Bazaar 3.3
-
Cuyahoga ADempiere Bazaar 3.3. beta (Victoria Edition)
http://sourceforge.net/project/showfiles.php?group_id=176962&package_i d=207834&release_id=527633
References
ADempiere Bazaar WebUI Unspecified Authentication Bypass Vulnerability
References:
References:
- ADempiere Bazaar Homepage (ADempiere Bazaar)