Geo++ GNCASTER HTTP Digest Authentication Nonce Regeneration Replay Security Bypass Vulnerability
BID:40022
Info
Geo++ GNCASTER HTTP Digest Authentication Nonce Regeneration Replay Security Bypass Vulnerability
| Bugtraq ID: | 40022 |
| Class: | Design Error |
| CVE: |
CVE-2010-0554 |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 27 2010 12:00AM |
| Updated: | Jan 27 2010 12:00AM |
| Credit: | RedTeam Pentesting GmbH |
| Vulnerable: |
Geo++ GNCASTER 1.4.0.7 |
| Not Vulnerable: |
Geo++ GNCASTER 1.4.0.8 |
Discussion
Geo++ GNCASTER HTTP Digest Authentication Nonce Regeneration Replay Security Bypass Vulnerability
Geo++ GNCASTER is prone to a security-bypass vulnerability.
Successful exploits may allow attackers to hijack web sessions or bypass authentication through a replay attack on the HTTP Digest authentication session; other attacks may also be possible.
Geo++ GNCASTER 1.4.0.7 is vulnerable; other versions may also be affected.
Geo++ GNCASTER is prone to a security-bypass vulnerability.
Successful exploits may allow attackers to hijack web sessions or bypass authentication through a replay attack on the HTTP Digest authentication session; other attacks may also be possible.
Geo++ GNCASTER 1.4.0.7 is vulnerable; other versions may also be affected.
Exploit / POC
Geo++ GNCASTER HTTP Digest Authentication Nonce Regeneration Replay Security Bypass Vulnerability
An attacker can carry out this attack using readily available network utilities.
An attacker can carry out this attack using readily available network utilities.
Solution / Fix
Geo++ GNCASTER HTTP Digest Authentication Nonce Regeneration Replay Security Bypass Vulnerability
Solution:
Vendor updates are available. Please contact the vendor for more information.
Solution:
Vendor updates are available. Please contact the vendor for more information.
References
Geo++ GNCASTER HTTP Digest Authentication Nonce Regeneration Replay Security Bypass Vulnerability
References:
References:
- [RT-SA-2010-003] Geo++(R) GNCASTER: Faulty implementation of HTTPDigest Authenti (RedTeam Pentesting GmbH)
- Geo++ GNCASTER Homepage (Geo++)