HelpBox selectrequestapplytemplate.asp sys_request_id Variable SQL Injection

2004-07-21T04:57:24
ID OSVDB:8178
Type osvdb
Reporter Noam Rathaus(expert@securiteam.com)
Modified 2004-07-21T04:57:24

Description

Vulnerability Description

HelpBox contains a flaw that will allow a remote attacker to inject arbitrary SQL code. The problem is that the 'sys_request_id' variable in the 'selectrequestapplytemplate.asp' script is not verified properly and will allow an attacker to inject or manipulate SQL queries.

Solution Description

Upgrade to version 3.4.0 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

HelpBox contains a flaw that will allow a remote attacker to inject arbitrary SQL code. The problem is that the 'sys_request_id' variable in the 'selectrequestapplytemplate.asp' script is not verified properly and will allow an attacker to inject or manipulate SQL queries.

References:

Vendor URL: http://www.laytontechnology.com/ Secunia Advisory ID:12118 Related OSVDB ID: 8170 Related OSVDB ID: 8174 Related OSVDB ID: 8176 Related OSVDB ID: 8179 Related OSVDB ID: 8171 Related OSVDB ID: 8172 Related OSVDB ID: 8175 Related OSVDB ID: 8173 Related OSVDB ID: 8177 Other Advisory URL: http://www.securiteam.com/windowsntfocus/5VP0S0ADFW.html ISS X-Force ID: 16772 CVE-2004-2551