PhotoPost Pro misc.php Administrator Email Flood DoS

2005-03-11T05:40:19
ID OSVDB:14680
Type osvdb
Reporter Igor Franchuk(sprog@online.ru)
Modified 2005-03-11T05:40:19

Description

Vulnerability Description

PhotoPost Pro contains a flaw that may allow a remote denial of service. The problem is that the 'reportpost' action in 'misc.php' does not limit the logging data that is sent to the administrator, which may allow a remote attacker to send an unlimited amount of mails to the administrator.

Solution Description

Upgrade to version 5.01 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

PhotoPost Pro contains a flaw that may allow a remote denial of service. The problem is that the 'reportpost' action in 'misc.php' does not limit the logging data that is sent to the administrator, which may allow a remote attacker to send an unlimited amount of mails to the administrator.

Manual Testing Notes

http://[victim]/photopost/misc.php?action=reportpost&report=1&final=1

References:

Vendor URL: http://www.photopost.com/ Secunia Advisory ID:14576 Related OSVDB ID: 14679 Related OSVDB ID: 14681 Related OSVDB ID: 14682 Related OSVDB ID: 14683 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-03/0200.html ISS X-Force ID: 19676 CVE-2005-0775 Bugtraq ID: 12779