Sygate Management Server Authentication Applet SQL Injection

2006-02-02T05:03:21
ID OSVDB:22883
Type osvdb
Reporter Guillaume Goutaudier(), Nicolas Gregoire()
Modified 2006-02-02T05:03:21

Description

Vulnerability Description

Sygate Management Server contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the authentication servlet not properly sanitizing user-supplied input to unspecified variable(s). This may allow an attacker to inject or manipulate SQL queries in the backend database.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, Symantec Corporation has released a patch to address this vulnerability.

Short Description

Sygate Management Server contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the authentication servlet not properly sanitizing user-supplied input to unspecified variable(s). This may allow an attacker to inject or manipulate SQL queries in the backend database.

References:

Vendor Specific Advisory URL Security Tracker: 1015561 Secunia Advisory ID:18689 Keyword: SYM06-002 ISS X-Force ID: 24413 Generic Exploit URL: http://metasploit.com/projects/Framework/exploits.html#sygate_policy_manager FrSIRT Advisory: ADV-2006-0402 CVE-2006-0522 Bugtraq ID: 16452