Maian Search 'search_cookie' Authentication Bypass Vulnerability

Bugtraq ID:	30211
Class:	Design Error
CVE:	CVE-2008-3317
Remote:	Yes
Local:	No
Published:	Jul 13 2008 12:00AM
Updated:	Apr 16 2015 05:58PM
Credit:	S.W.A.T.
Vulnerable:	Maian Script World Maian Search 1.1
Not Vulnerable:

Maian Search 'search_cookie' Authentication Bypass Vulnerability

Maian Search is prone to an authentication-bypass vulnerability because it fails to adequately verify user-supplied input used for cookie-based authentication.

Attackers can exploit this vulnerability to gain administrative access to the affected application.

This issue affects Maian Search 1.1 and prior versions.

Maian Search 'search_cookie' Authentication Bypass Vulnerability

Attackers can exploit this issue via a browser.

The following example JavaScript code to create a cookie is available:

javascript:document.cookie = "search_cookie=1; path=/";

Maian Search 'search_cookie' Authentication Bypass Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Maian Search 'search_cookie' Authentication Bypass Vulnerability

References:

• Maian Weblog Homepage (Maian Script World)