Surfnet 1.31 Unauthorized Account Depositing Vulnerability

2004-01-02T00:00:00
ID EDB-ID:23511
Type exploitdb
Reporter Rift_XT
Modified 2004-01-02T00:00:00

Description

Surfnet 1.31 Unauthorized Account Depositing Vulnerability. Local exploit for windows platform

                                        
                                            source: http://www.securityfocus.com/bid/9347/info

Surfnet kiosks are prone to a vulnerability that may permit kiosk users to deposit extra time into kiosk accounts. This reportedly occurs when a user attempts to authenticate to the kiosk, causing their time to be doubled for each attempt. 

C:\Surfnet\WWWRoot\CMD_Existing_Account_Attempt:Login=Username:Password=Password