Info

Disclosure

Sep 18, 2004

Discovery

Unknown

Dates

Exploit

Sep 18, 2004

Solution

Unknown

Description

TUTOS contains a flaw that will allow an attacker to inject arbitrary SQL code. The problem is that the link_id variable in the /file/file_overview.php?module is not verified properly and will allow an attacker to inject or manipulate SQL queries.

Classification

Location: Remote / Network Access
Attack Type: Information Disclosure, Input Manipulation
Impact: Loss of Confidentiality, Loss of Integrity
Exploit: Exploit Public
Disclosure: OSVDB Verified, Vendor Verified
OSVDB: Web Related

Solution

Upgrade to version 1.2 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

TUTOS	TUTOS	1.0
		1.1

References

Security Tracker: 1011363
Bugtraq ID: 11221
Secunia Advisory ID: 12606 18954
ISS X-Force ID: 17444
CVE ID: 2004-2161 (see also: NVD)
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2004-09/0239.html
Vendor Specific News/Changelog Entry: http://cvs.sourceforge.net/viewcvs.py/tutos/tutos/php/file/file_overview.php?r1=1.11.2.1&r2=1.11.2.2
Other Advisory URL: http://www.debian.org/security/2006/dsa-980
Vendor URL: http://www.tutos.org/
Vendor Specific Solution URL: http://www.tutos.org/download/

Credit

Jose Antonio Coret -
Joxean Koret - joxeankoretyahoo.es -

Direct URL: http://osvdb.org/10164