FrSIRT Advisory : FrSIRT/ADV-2005-0329
CVE Reference : GENERIC-MAP-NOMATCH
Rated as : High
Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2005-04-11
* Technical Description *
Two vulnerabilities were identified in ModernBill, which may be exploited by remote attackers to compromise a vulnerable server or conduct Cross Site Scripting attacks.
- The first flaw is due to an input validation error in the "news.php" script when handling a specially crafted "DIR" variable, which may be exploited by a remote attacker to include a malicious PHP script and execute arbitrary commands with the privileges of the web server.
- The second vulnerability is due to an input validation error in the "orderwiz.php" file when handling specially crafted "c_code" or "aid" parameters, which may be exploited by attackers to cause arbitrary scripting code to be executed by the user's browser.
* Affected Products *
ModernBill version 4.3.0 and prior
* Solution *
ModernBill version 4.3.1 :
http://www.modernbill.com/ * References *
http://www.frsirt.com/english/advisories/2005/0329http://www.gulftech.org/?node=research&article_id=00067-04102005 * Credits *
Vulnerability reported by James Bercegay
AlphaOne Technology Support Forums
Author
Logged
