[VulnWatch] ZH2004-13SA (security advisory): Sql Injection in Help Desp Pro 2.0

From: D'Amato Luigi (luigidamato77_at_yahoo.it)
Date: 06/26/04

  • Next message: D'Amato Luigi: "[VulnWatch] ZH2004-14SA (security advisory):Sql Injection in Infinity WEB" 
    To: <vulnwatch@vulnwatch.org>
Date: Sat, 26 Jun 2004 14:03:40 +0100

    26/06/2004

    ZH2004-10SA (security advisory): Sql Injection in Help Desp Pro 2.0
    Discovered: June 1st 2004

    Vendor contacted: June 1st 2004
    Published: June 26th 2004

    Title: Help Desk Pro

    Vulnerable versions :2.0 unpatched

    Type: Sql Injection

    Author: D'Amato Luigi from Zone-h Security Labs -
    securitywireless@zone-h.it - admin@securitywireless.info

    Vendor: http://www.websoft.it/

    Description

    **********
    Zone-H Security Team has discovered a flaw in Securityin Help Desk Pro. This
    vulnerability could allow malicious
    attackers to bypass the authentication mechanish without having an account

    Detail

    ********************************************

    Due to an improper login validation in the login page it is possible to
    bypass the authentication mechanism

    Solution

    **********

    The vendor has been contacted and has released a patch

    ---

    D'Amato Luigi from Zone-h Security Labs -
    securitywireless@zone-h.it -
    admin@securitywireless.info
    Admin Security Wireless
    http://www.securitywireless.info

    http://www.zone-h.org/en/advisories/read/id=4891/

  • Next message: D'Amato Luigi: "[VulnWatch] ZH2004-14SA (security advisory):Sql Injection in Infinity WEB"

    Relevant Pages

    • RE: Need Help
      ... If you fail to sell mgmt on additional personnel, you may want to use an ... That way if there is a major security breach or the help desk starts failing ... and DC supporting over 118 location West ...
      (Security-Basics)
    • RE: EXAMPLE: Why OOO is *BAD* [WAS: Re: OOO FLAME]
      ... Interesting security procedures they have. ... I then sent Joe a test email message at his work email address. ... What I proposed was to social engineer the help desk into providing ... Sue: "Hi, I'm Sue with abc training company. ...
      (Pen-Test)
    • Re: EXAMPLE: Why OOO is *BAD* [WAS: Re: OOO FLAME]
      ... Any company that allows a secretary such access to server /etc/shadow files has no security perspective what-so-ever. ... I then sent Joe a test email message at his work email address. ... What I proposed was to social engineer the help desk into providing ... Sue: "Hi, I'm Sue with abc training company. ...
      (Pen-Test)
    • Re: EXAMPLE: Why OOO is *BAD* [WAS: Re: OOO FLAME]
      ... Helpdesk employee with access to shadow files on servers? ... the help desk is run by junior sysadmins. ... even more critical that the help desk get a clue when it comes to security. ...
      (Pen-Test)
    • [Full-Disclosure] ZH2004-13SA (security advisory): Sql Injection in Help Desp Pro 2.0 (Corrected ver
      ... Sql Injection in Help Desp Pro 2.0 ... Zone-H Security Team has discovered a flaw in Securityin Help Desk Pro. ... Due to an improper login validation in the login page it is possible to bypass the authentication mechanism ...
      (Full-Disclosure)