|
Spider Sales SQL Injection and Weak Encryption
|
|
Secunia Advisory:
|
SA11044
|
|
|
Release Date:
|
2004-03-05
|
|
Popularity:
|
6,111 views
|
|
|
Critical:
|
Moderately critical
|
|
Impact:
|
Security Bypass
Manipulation of data
Exposure of system information
Exposure of sensitive information
|
|
Where:
|
From remote
|
|
Solution Status:
|
Unpatched
|
|
| Software: | Spider Sales 2.x
|
|
|
Secunia CVSS-2 Score:
|
Available in Secunia business solutions 
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities
|
|
| Advisory Content (Page 1 of 3) | [ 1 ] [ 2 ] [ 3 ] | |
|
Description:
Nick Gudov has reported two vulnerabilities in Spider Sales, allowing malicious people to conduct SQL injection attacks and to decrypt sensitive information.
1) The product reportedly uses an insecure implementation of the RSA cryptosystem to encrypt sensitive information in the database. This may be exploited by malicious people to read the encrypted information by calculating the private key.
It is furthermore reported that the private key is stored in the database in the same table as the public key.
Successful exploitation of these issues requires that a malicious person has access to the database.
2) Input to the "userId" parameter isn't properly verified in "viewCart.asp" and other scripts. This can be exploited to manipulate SQL queries; the potential impact varies depending on the underlying database.
Change Page:
[ 1 ] [ 2 ] [ 3 ]
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
