Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Bugtraq
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

SQL-Ledger serious security vulnerability and workaround

from [chris] Network Security [Permanent Link]
Subject: SQL-Ledger serious security vulnerability and workaround
Date: 30 Aug 2006 03:12:56 -0000 
Hi;

This post is to inform everyone that there is a serious security hole that has 
been discovered in SQL-Ledger involving session handling.  The flaw allows 
anyone with network access to the server to access the application as any 
logged in user using trivial mechanisms.  I have previously brought this flaw 
up with Dieter several months ago, and since it is still an issue, I have sent 
him a fix that a few of us have prepared.  This fix was prepared by myself and 
Christopher Murtagh with the help of a few testers.

In the mean time, we recommend that people take the following precautions:
1)  DO NOT allow unauthorized users access to the SQL-Ledger application.    
Use .htaccess files or network mechanisms to prevent unauthorized access to the 
application or server.

2)  If different departments require different levels of access, move 
departmental roles into separate applications, and enforce permissions 
accordingly.  The different installations can access the same database, however.

Full disclosure will follow two weeks from yesterday.

Best Wishes,
Chris Travers
Metatron Technology Consulting
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • SQL-Ledger serious security vulnerability and workaround, chris <=
Previous by Date:  Re: AW: JetBox cms (search_function.php) Remote File Include, Steven M. Christey
Next by Date:  Ezportal/Ztml v1.0 Multiple vulnerabilities, Hessamx
Previous by Thread:  Re: AW: JetBox cms (search_function.php) Remote File Include, Steven M. Christey
Next by Thread:  Ezportal/Ztml v1.0 Multiple vulnerabilities, Hessamx
Indexes:  [Date] [Thread] [Top] [All Lists]