WebDB Search Module search Variable SQL Injection

2005-12-22T09:18:07
ID OSVDB:21910
Type osvdb
Reporter r0t(krustevs@googlemail.com)
Modified 2005-12-22T09:18:07

Description

Vulnerability Description

WebDB has been reported to contain a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the search module not properly sanitizing user-supplied input to the 'search' variable. However, subsequent testing and vendor communication has revealed the affected code resides on Lois Software's computers, and is part of a managed service. The affected code was added for one client to perform additional testing and only allowed safe commands. The code was removed on or before March 7, 2006.

Site specific vulnerabilities are not included in OSVDB, but due to the distribution of this information and the lack of clarification, this entry is being kept to help make the additional details public.

Solution Description

The vulnerability reported is site specific, only allowed specific commands to be executed, and has already been fixed by the vendor. No solution required.

Short Description

WebDB has been reported to contain a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the search module not properly sanitizing user-supplied input to the 'search' variable. However, subsequent testing and vendor communication has revealed the affected code resides on Lois Software's computers, and is part of a managed service. The affected code was added for one client to perform additional testing and only allowed safe commands. The code was removed on or before March 7, 2006.

Site specific vulnerabilities are not included in OSVDB, but due to the distribution of this information and the lack of clarification, this entry is being kept to help make the additional details public.

References:

Vendor URL: http://www.loissoftware.com/ Secunia Advisory ID:18226 Other Advisory URL: http://pridels.blogspot.com/2005/12/webdb-sql-inj-vuln.html Mail List Post: http://attrition.org/pipermail/vim/2006-March/000586.html Mail List Post: http://attrition.org/pipermail/vim/2006-March/000587.html Mail List Post: http://attrition.org/pipermail/vim/2006-March/000589.html Mail List Post: http://attrition.org/pipermail/vim/2006-March/000591.html ISS X-Force ID: 23840 FrSIRT Advisory: ADV-2005-3071 CVE-2005-4515 Bugtraq ID: 16038