728 matches found
CVE-2008-3591
The CVE-2008-3591 issue affects Twentyone Degrees Symphony 1.7.01 and earlier, where the lib/class.admin.php login path processes the sym_auth cookie in a database query. The underlying flaw is a SQL injection that allows an attacker to alter queries, potentially bypass authentication and gain ad...
Symphony sym_auth Cookie SQL Injection
The version of Symphony installed on the remote host fails to sanitize user-supplied input to the 'symauth' cookie before using it in the 'login' function in 'lib/class.admin.php' in a database query. An unauthenticated attacker may be able to exploit this issue to manipulate database queries to...
Symphony <= 1.7.01 (non-patched) Remote Code Execution Exploit
No description provided by source. ?php Symphony = 1.7.01 non-patched Remote Command Execution Exploit by Raz0r http://Raz0r.name Software site: http://21degrees.com.au/ works regardless magicquotesgpc echo "-----------------------------------------------------------------\n"; echo "Symphony =...
Symphony 1.7.01 (non-patched) - Remote Code Execution
db-fetchRow0, $sql; ... ... ifisset$COOKIESYMCOOKIE $args = unserialize$COOKIESYMCOOKIE; $result = $this-login$args'username', $args'password', true, false; ------------------/source code--------------------- password value from cookie is not properly sanitized so the code above...
Lotus Expeditor cai URI handler command injection
Added: 06/20/2008 CVE: CVE-2008-1965 BID: 28926 OSVDB: 44868 Background Lotus Expeditor is a desktop integration framework used by Lotus products including Lotus Symphony. Problem Lotus Expeditor registers a handler for cai: URIs which passes arbitrary arguments to rcplauncher.exe. This allows...
Lotus Expeditor cai URI handler command injection
Added: 06/20/2008 CVE: CVE-2008-1965 BID: 28926 OSVDB: 44868 Background Lotus Expeditor is a desktop integration framework used by Lotus products including Lotus Symphony. Problem Lotus Expeditor registers a handler for cai: URIs which passes arbitrary arguments to rcplauncher.exe. This allows...
Lotus Expeditor cai URI handler command injection
Added: 06/20/2008 CVE: CVE-2008-1965 BID: 28926 OSVDB: 44868 Background Lotus Expeditor is a desktop integration framework used by Lotus products including Lotus Symphony. Problem Lotus Expeditor registers a handler for cai: URIs which passes arbitrary arguments to rcplauncher.exe. This allows...
Lotus Expeditor cai URI handler command injection
Added: 06/20/2008 CVE: CVE-2008-1965 BID: 28926 OSVDB: 44868 Background Lotus Expeditor is a desktop integration framework used by Lotus products including Lotus Symphony. Problem Lotus Expeditor registers a handler for cai: URIs which passes arbitrary arguments to rcplauncher.exe. This allows...