D2KBlog profile.asp Cookie memName Field SQL Injection

2006-03-08T08:17:34
ID OSVDB:23770
Type osvdb
Reporter FarhadKey(FarhadKey@kapda.ir), DevilBox(devil_box@kapda.ir)
Modified 2006-03-08T08:17:34

Description

Vulnerability Description

D2KBlog contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'profile.asp' script not properly sanitizing user-supplied input from the 'memName' cookie field. This may allow an attacker to inject or manipulate SQL queries in the backend database.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

D2KBlog contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'profile.asp' script not properly sanitizing user-supplied input from the 'memName' cookie field. This may allow an attacker to inject or manipulate SQL queries in the backend database.

References:

Vendor URL: http://www.d2ksoft.com/ Secunia Advisory ID:19177 Related OSVDB ID: 23771 Other Advisory URL: http://www.kapda.ir/advisory-287.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-02/0705.html ISS X-Force ID: 25215 FrSIRT Advisory: ADV-2006-0896 CVE-2006-1123