|
|
Family: CGI abuses --> Category: attack
Multiple Vulnerabilities in phpCOIN 1.2.1b and older Vulnerability Scan
Vulnerability Scan Summary
Detects multiple vulnerabilities in phpCOIN 1.2.1b and older
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote web server contains a PHP application affected by several
flaws.
Description :
The remote host is running phpCOIN version 1.2.1b or older. These
versions suffer from several vulnerabilities, among them :
- A Local File Include Vulnerability
A possible hacker can execute arbitrary code in the context of the
web server user by passing the name of a script or file through
the 'page' parameter of the 'auxpage.php' script.
- Multiple SQL injection vulnerabilities.
By calling the 'faq' module with a specially crafted
'faq_id' parameter or the 'pages' or 'site' modules with a
specially crafted 'id' parameter, a remote attacker may be
able to manipulate SQL queries used by the program, thereby
revealing sensitive information or even corrupting the
database.
- Multiple cross-site scripting vulnerabilities.
A remote attacker may be able to inject arbitrary code
into the 'helpdesk' and 'mail' modules as well as the
'login.php' script by appending it to a valid request.
Successful exploitation may allow a possible hacker to steal
authentication cookies or misrepresent site content.
See also :
http://www.gulftech.org/?node=research&article_id=00065-03292005
http://archives.neohapsis.com/archives/bugtraq/2005-03/0508.html
http://forums.phpcoin.com//index.php?showtopic=4210
Solution :
Apply the 2005-03-14 fix file or later for phpCOIN v1.2.2.
Threat Level:
Medium / CVSS Base Score : 6
(AV:R/AC:H/Au:NR/C:P/A:P/I:P/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|
