[SATLUG] My new site...would like some feedback
K. Spoon
kell at spoonix.com
Tue Oct 10 02:14:40 CDT 2006
On Mon, Oct 09, 2006 at 05:32:00PM -0500, Eli Cantu wrote:
> Do these exploits all use the account creation vector?
That depends on how the app handles authentication, which I don't have
the first clue about.
Just picking one of the CVEs at random, here's the bugtraq writeup for
the vulnerability:
http://www.securityfocus.com/archive/1/archive/444425/100/0/threaded
The exploit works if:
1) the php install accepts GET for variable definition
2) $mosConfig_path doesn't get overwritten
3) there's no authentication call before rendering the page (which looks
like the case here)
Then they're in even without having to have access to the site through a
valid username/password.
--
K. Spoon <kell at spoonix.com>
More information about the SATLUG
mailing list