From: Secunia Security Advisories (sec-advsecunia.com)
Date: Fri Jul 04 2003 - 06:46:35 CDT

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

TITLE:
Microsoft Commerce Server Insecure Registry Permissions

READ ONLINE:
http://www.secunia.com/advisories/9176/

CRITICAL:
Less critical

IMPACT:
Exposure of sensitive information

WHERE:
Local system

SOFTWARE:
Microsoft Commerce Server 2002

DESCRIPTION:
A vulnerability has been reported in Microsoft Commerce Server, which
can be exploited by malicious users to gain knowledge of sensitive
information.

The password for the SQL Server backend is stored encoded in the
registry in the key "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Commerce
Server" if authentication has been configured to SQL Server
authentication. However, this registry key has weak permissions
allowing any user to read the encoded password.

By decoding the password, a malicious user could gain knowledge of
the administrative SQL Server password.

The vulnerability has been reported in version 2002. However, prior
versions may also be affected.

SOLUTION:
Set proper ACL permissions on the registry key.

REPORTED BY / CREDITS:
Cesar Cerrudo

----------------------------------------------------------------------

Secunia recommends that you verify all advisories you receive, by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

Contact details:
Web : http://www.secunia.com/
E-mail : supportsecunia.com
Tel : +44 (0) 20 7016 2693
Fax : +44 (0) 20 7637 0419

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories

----------------------------------------------------------------------

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]