e107 0.7.19 Source IP Address Spoof

2010-04-21T00:00:00
ID PACKETSTORM:88748
Type packetstorm
Reporter High-Tech Bridge SA
Modified 2010-04-21T00:00:00

Description

                                        
                                            `Vulnerability ID: HTB22343  
Reference: http://www.htbridge.ch/advisory/ip_address_spoofing_in_e107.html  
Product: e107 Website System  
Vendor: e107  
Vulnerable Version: 0.7.19 and Probably Prior Versions  
Vendor Notification: 05 April 2010   
Vulnerability Type: Application Logic Error  
Status: Not Fixed, Vendor Alerted, Awaiting Vendor Response  
Risk level: Low   
Credit: High-Tech Bridge SA (http://www.htbridge.ch/)   
  
Vulnerability Details:  
An attacker can spoof his IP address in the system logs. Attacker can alter the X-Forwarded-For field and system will log this value as real. IP-bases filtering systems can be bypassed, fake or local IPs may be logged instead of the real. Vulnerability is critical for IP-based authentications.  
  
Attacker can use browser to exploit this vulnerability. The following PoC is available:   
  
X-Forwarded-For: 1.2.3.4  
  
`