Tr Forum /membres/modif_profil.php id Variable Arbitrary Profile Modification

2006-09-03T05:19:00
ID OSVDB:28542
Type osvdb
Reporter DarkFig(gmdarkfig@gmail.com)
Modified 2006-09-03T05:19:00

Description

Vulnerability Description

Tr Forum contains a flaw that may allow a malicious user to bypass certain security restrictions. The issue is triggered due to missing access verification when updating the profile. It is possible that the flaw may allow modifing other users' settings by changing the 'id' parameter passed to modif_profil.php resulting in a loss of integrity.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

Tr Forum contains a flaw that may allow a malicious user to bypass certain security restrictions. The issue is triggered due to missing access verification when updating the profile. It is possible that the flaw may allow modifing other users' settings by changing the 'id' parameter passed to modif_profil.php resulting in a loss of integrity.

References:

Vendor URL: http://www.comscripts.com/scripts/php.tr-forum.1579.html Secunia Advisory ID:21754 Related OSVDB ID: 28543 Related OSVDB ID: 28545 Related OSVDB ID: 28544 Other Advisory URL: http://acid-root.new.fr/poc/10060903.txt Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-09/0017.html FrSIRT Advisory: ADV-2006-3452 CVE-2006-4586 Bugtraq ID: 19834