Just For Fun Network Management and Monitoring System Multiple Remote Vulnerabilities
TITLE: Just For Fun Network Management and Monitoring System Multiple Remote Vulnerabilities
CLASS: Unknown
CVE:
REMOTE: Yes
LOCAL: No
PUBLISHED: Jun 11 2007 12:00AM
UPDATE: Jun 11 2007 12:00AM
CREDIT: Tim Brown is credited with the discovery of these vulnerabilities.
VULNERABLE:
Javier Szyszlican Just For Fun Network Management and Monitoring Sys 0.8.3-pre2NOT VULNERABLE:
Javier Szyszlican Just For Fun Network Management and Monitoring Sys 0.8.3-pre1
Javier Szyszlican Just For Fun Network Management and Monitoring Sys 0.8.3-pre3
Vai alla pagina originale su Security Focus
Discussion
Just For Fun Network Management and Monitoring System (JFFNMS) is prone to multiple remote vulnerabilities, including a cross-site scripting issue, an SQL-injection issue, and multiple information-disclosure issues.
An attacker can exploit these issues by manipulating the SQL query logic to carry out unauthorized actions on the underlying database, access sensitive information, and obtain cookie-based authentication credentials.
These issues affect versions prior to JFFNMS 0.8.4-pre3.
Exploit
An attacker can exploit the SQL-injection and information-disclosure issues through a web-client. An attacker can exploit the cross-site scripting issues by enticing an unsuspecting user to follow a malicious URI.
The following proof-of-concept URIS are available:
http://www.example.com/auth.php?user='%20union%20select%202,'admin','$1$RxS1ROtX$IzA1S3fcCfyVfA9rwKBMi.','Administrator'/*&pass=
http://www.example.com/auth.php?user=[xss]
http://192.168.1.1/admin/setup.php
http://192.168.1.1/admin/adm/test.php
Solution
Solution:
The vendor released an update to address these issues. Please see the references for more information.
References
References:
- Just For Fun Network Management and Monitoring System Homepage (Javier Szyszlican)
- Serious holes affecting JFFNMS (timb@nth-dimension.org.uk)