MD News administration area security bypass
| mdnews-admin-security-bypass (25636) |  Medium Risk |
Description:
MD News could allow a remote attacker to bypass user authentication. A remote, unauthenticated attacker who knows the administrative script names could access the Administration Area scripts directly, bypassing authentication, to gain administrative access on the system and possibly add, modify, or delete information in the back-end database.
Consequences:
Gain Access
Remedy:
No remedy available as of July 9, 2011.
References:
- eVuln Advisory EV0120: MD News Authentication Bypass and SQL Injection Vulnerabilities.
- Matthew Dingley PHP Scripts Web site: MD News.
- BID-17394: MD News Admin.PHP SQL Injection Vulnerability
- CVE-2006-1756: MD News 1 allows remote attackers to bypass authentication via a direct request to a script in the Administration Area.
- OSVDB ID: 24455: MD News Admin Scripts Direct Request Authentication Bypass
- SA19530: MD News "id" SQL Injection Vulnerability
- VUPEN/ADV-2006-1259: MD News admin.php Remote SQL Injection and Security Bypass Vulnerabilities
Platforms Affected:
- Matthew Dingley MD News 1.0
Reported:
Apr 05, 2006
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net