header-logo
Suggest Exploit
vendor:
osCommerce
by:
SecurityFocus
7.5
CVSS
HIGH
Authentication Bypass
287
CWE
Product Name: osCommerce
Affected Version From: 2.2cvs
Affected Version To: Previous versions
Patch Exists: YES
Related CWE: N/A
CPE: oscommerce
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2002

osCommerce Authentication Bypass Vulnerability

It has been reported that osCommerce uses HTTP header information as a part of its authentication mechanism. Reportedly an attacker may spoof parts of the HTTP header and, in doing so, subvert osCommerce authentication systems set in place. This attack may be used in conjunction with other attacks to disclose, what may be sensitive information, to the attacker.

Mitigation:

Ensure that the authentication mechanism is secure and cannot be bypassed by spoofing the HTTP header.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/7357/info

osCommerce has been reported prone to authentication bypass vulnerability.

It has been reported that osCommerce uses HTTP header information as a part of its authentication mechanism. Reportedly an attacker may spoof parts of the HTTP header and, in doing so, subvert osCommerce authentication systems set in place.

This attack may be used in conjunction with other attacks to disclose, what may be sensitive information, to the attacker.

It should be noted that although osCommerce version 2.2cvs was reported vulnerable, previous versions may also be affected. 

http://www.example.com/oscommerce_installation/default.php/cPath/../../../../../

Navigation

Suggest Exploit

Services By CQR