BookIt! Consumer stores plaintext passwords in authentication cookies

bookit-plaintext-passwords (9316) The risk level is classified as MediumMedium Risk

Description:

BookIt! Consumer transmits and stores unencrypted usernames and passwords in plain text. When creating or updating a user profile, if the "Save User ID to this computer" or "Save User ID and Password to this computer" option is selected, authentication information would be transmitted and stored in an authentication cookie in plain text on the local computer. An attacker could recover a user's authentication credentials either locally, or remotely using cross-site scripting and gain unauthorized access to the victim's online reservations account.


Consequences:

Gain Access

Remedy:

Upgrade to the latest version of BookIt! Consumer (2.4 or later). Contact Datalex for more information. See References.

References:

  • BugTraq Mailing List, Mon Jun 10 2002 - 10:42:27 CDT: Datalex BookIt! Consumer Password Vulnerabilities.
  • Datalex Web site: Datalex - Contact Us.
  • BID-4972: Datalex Bookit! Consumer Plaintext Authentication Credentials Vulnerability
  • CVE-2002-0933: Datalex PLC BookIt! Consumer before 2.2 stores usernames and passwords in plaintext in a cookie, which could allow remote attackers to gain privileges via Cross-site scripting or sniffing attacks.
  • OSVDB ID: 14466: Datalex PLC BookIt! Consumer Authentication Credential Cookie Cleartext Storage

Platforms Affected:

  • Datalex BookIt! Consumer 2.1 and prior

Reported:

Jun 10, 2002

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email ignore thisxforceignore this@ignore thisus.ignore thisibm.comignore this

Return to the main page