|
WebAdmin Account Manipulation and Arbitrary File Disclosure
|
|
Secunia Advisory:
|
SA21558
|
|
|
Release Date:
|
2006-08-21
|
|
Last Update:
|
2006-08-29
|
|
Popularity:
|
5,794 views
|
|
|
Critical:
|
Less critical
|
|
Impact:
|
Manipulation of data
Exposure of system information
Exposure of sensitive information
|
|
Where:
|
From local network
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | WebAdmin 3.x
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities 
|
|
| CVE reference: | CVE-2006-4370
CVE-2006-4371
|
|
Description:
TTG has reported some vulnerabilities in WebAdmin, which can be exploited by certain malicious users to manipulate or gain knowledge of sensitive information.
1) Input passed to the "file" parameter in logfile_view.wdm and configfile_view.wdm is not properly sanitised before being used to show files. This can be exploited by a global administrative user to view the contents of arbitrary files via directory traversal attacks.
2) It possible for a domain administrative user to edit a global administrative user's account. This can be exploited to change the password and then login as the global administrative user.
Solution:
Update to version 3.25.
Provided and/or discovered by:
TTG
Changelog:
2006-08-22: Added additional information provided by TTG.
2006-08-29: Added CVE references.
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
