|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
FileProtection Express <= 1.0.1 authentification bypass
zerogue
gmail.com
Date: Tue May 02 2006 - 09:32:35 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
FileProtection Express <= 1.0.1 authentification bypass
Discovered by: Nomenumbra
Date: 5/2/2006
impact:high (privilege escalation,full file access)
Ok, this is absurd, the only form of authentification to the Admin panel is controlled by
a cookie value. Use firefox CookieEditor extension for example and make a cookie of the target
domain containing a value called Admin and set it to 1 (I really wonder if the word security is
actually in the dictionary you know...)
Nomenumbra/[0x4F4C]
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]