PHP Hosting Directory Cookie Authentication Bypass Vulnerability

Bugtraq ID:	30444
Class:	Access Validation Error
CVE:	CVE-2008-3454
Remote:	Yes
Local:	No
Published:	Jul 30 2008 12:00AM
Updated:	May 07 2015 05:25PM
Credit:	Stack
Vulnerable:	JnSHosts PHP Hosting Directory 2.0
Not Vulnerable:

PHP Hosting Directory Cookie Authentication Bypass Vulnerability

PHP Hosting Directory is prone to an authentication-bypass vulnerability because it fails to adequately verify user-supplied input used for cookie-based authentication.

An attacker can exploit this vulnerability to gain administrative access to the affected application; other attacks are also possible.

PHP Hosting Directory 2.0 is vulnerable; other versions may also be affected.

PHP Hosting Directory Cookie Authentication Bypass Vulnerability

Attackers may exploit this issue through a browser.

The following example code is available:

javascript:document.cookie = "adm=1; path=/"; document.cookie = "adm=1; path=/";

PHP Hosting Directory Cookie Authentication Bypass Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

PHP Hosting Directory Cookie Authentication Bypass Vulnerability

References:

• PHP Hosting Directory Homepage (JnSHosts)