Info

Disclosure

Dec 02, 2005

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

Multiple DUware products contain a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the type.asp script not properly sanitizing user-supplied input to the iType variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

Classification

Location: Remote / Network Access
Attack Type: Information Disclosure, Input Manipulation
Impact: Loss of Confidentiality, Loss of Integrity
Disclosure: OSVDB Verified
OSVDB: Web Related

Solution

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Products

DUware	DUpaypal Pro	3.0
	DUpaypal	3.1
	DUnews	1.1
	DUgallery	3.3
	DUdownload	1.1
	DUdirectory Pro SQL	3.0
	DUdirectory Pro	3.0
	DUdirectory	3.1
	DUclassified	4.2
	DUarticle	1.1
	DUamazon	3.1

References

Bugtraq ID: 15681
Secunia Advisory ID: 17835
CVE ID: 2005-3976 (see also: NVD)
VUPEN Advisory: ADV-2005-2700
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-12/0026.html
Vendor URL: http://www.duware.com/products/

Credit

Syst3m_f4ult - Crouz Security Team

Direct URL: http://osvdb.org/21385

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

DUware

DUpaypal Pro

DUpaypal

DUnews

DUgallery

DUdownload

DUdirectory Pro SQL

DUdirectory Pro

DUdirectory

DUclassified

DUarticle

DUamazon

References

Credit