Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Vuln-Dev
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Ragnarok Online Control Panel Authentication Bypass Vulnerability [new m

from [dp14] Network Security [Permanent Link]
Subject: Ragnarok Online Control Panel Authentication Bypass Vulnerability [new method]
Date: 31 Aug 2007 12:05:51 -0000 
VaLiuS has reported a vulnerability in Ragnarok Online Control Panel,
which can be exploited by malicious people to bypass certain security
restrictions.

The vulnerability is caused due to an error in the authentication
process when checking page access. This can be exploited to bypass
the authentication process via a specially crafted URL with an
appended non-restricted page.

The /.../ reffers to directory crawling

Example:
http://www.example.com/CP/...../account_manage.php/login.php

Successful exploitation requires that files are served from an Apache
HTTP server.

The vulnerability has been reported in version 4.3.4a. Other versions
may also be affected.

SOLUTION:
Edit the source code to ensure that the authentication process is
properly performed.

PROVIDED AND/OR DISCOVERED BY:
Calypso Steweren
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • Ragnarok Online Control Panel Authentication Bypass Vulnerability [new method], dp14 <=
Previous by Date:  Re: Digital Armaments Security Advisory 24.07.2006: Siemens Speedstream Wireless/Router Denial of Service Vulnerability, malaguka
Next by Date:  HPSBTU02256 SSRT071449 rev.1 - HP Tru64 UNIX or HP Tru64 Internet Express running BIND, Remote DNS Cache Poisoning, security-alert
Previous by Thread:  Re: Digital Armaments Security Advisory 24.07.2006: Siemens Speedstream Wireless/Router Denial of Service Vulnerability, malaguka
Next by Thread:  HPSBTU02256 SSRT071449 rev.1 - HP Tru64 UNIX or HP Tru64 Internet Express running BIND, Remote DNS Cache Poisoning, security-alert
Indexes:  [Date] [Thread] [Top] [All Lists]