FunkyASP AD System admin.asp Password Field SQL Injection

2005-05-24T04:22:54
ID OSVDB:16825
Type osvdb
Reporter Romty()
Modified 2005-05-24T04:22:54

Description

Vulnerability Description

FunkyASP contains a flaw that may allow an attacker to inject arbitrary SQL queries. The issue is due to the password variable in the admin.asp script not being properly sanitized and may allow an attacker to inject or manipulate SQL queries.

Solution Description

Upgrade to version 1.1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

FunkyASP contains a flaw that may allow an attacker to inject arbitrary SQL queries. The issue is due to the password variable in the admin.asp script not being properly sanitized and may allow an attacker to inject or manipulate SQL queries.

Manual Testing Notes

Uername= admin Password= ' or ''='

References:

Vendor URL: http://www.funkyasp.co.uk/ Vendor Specific Solution URL: http://www.funkyasp.co.uk/product.asp?prod=1&currency=USD Security Tracker: 1014056 Secunia Advisory ID:15494 Other Advisory URL: http://www.under9round.com/funky-asp.txt CVE-2005-1786