CGI Script Center's Account Manager Allows Elevated Access

 

Reported August 23, 2000 by
n30

VERSIONS AFFECTED
  • CGI Script Center's Account Manager - all Lite and Pro versions, and possibly the Enterprise version

DESCRIPTION

Administrative level access can be obtained to the product by overwriting the existing admistrator password by calling a specific URL and passing it the new password. 

DEMONSTRATION

The following form (provided by the discoverer) will reset the password to whatever is entered. Note: the form is non-funtional in its current state since no specific URL has been defined in the "action' tag.

Account Manager LITE/PRO: Password Exploit!

n30

Please enter your password twice. Once to set it, and once to confirm it.

password
confirmation



Account Manager LITE/PRO Admin Passwerd Exploit


To Use Modify Source To Point to amadmin.pl on TARGET Server

mail-me

VENDOR RESPONSE

The problem has been fixed in Lite version 1.04 and Pro version 1.026, available on the vendors Web site.

CREDIT
Discovered by
n30

Hide comments

Comments

  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
Publish