Clever Copy readpm.php Arbitrary User Message Manipulation

2005-07-27T05:20:33
ID OSVDB:18509
Type osvdb
Reporter Lostmon Lords(Lostmon@gmail.com)
Modified 2005-07-27T05:20:33

Description

Vulnerability Description

Clever Copy contains a flaw that may allow a malicious user to manipulate arbitrary user messages. The issue is triggered when an attacker manipulates the URL to access a message. This flaw may lead to a loss of confidentiality and integrity.

Technical Description

An attacker must supply valid authentication credentials in order to exploit this vulnerability.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

Clever Copy readpm.php Arbitrary User Message Manipulation.

Manual Testing Notes

http://[victim]/readpm.php?op=read&ID=2&name=pruebas&user=waltrapass http://[victim]/readpm.php?op=read&ID=2&user=waltrapass http://[victim]/readpm.php?op=del&ID=2&name=pruebas&user=waltrapass http://[victim]/readpm.php?op=del&ID=2&user=waltrapass

References:

Vendor URL: http://clevercopy.bestdirectbuy.com Secunia Advisory ID:16236 Other Advisory URL: http://lostmon.blogspot.com/2005/07/clever-copy-unauthorized-read-delete.html ISS X-Force ID: 21619 Bugtraq ID: 14397