[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Fusen News 3.3 Account Add Vulnerability

To: bugtraq@securityfocus.com
Subject: Fusen News 3.3 Account Add Vulnerability
From: DarkKnight <mbuzz04@yahoo.com>
Date: 15 Aug 2003 05:28:49 -0000


Author: DarkKnight
My site: http://www.insecureonline.com
Product: Fusen News 3.3 (maybe lower)
Side Note: This vulnerability is for an OLD VERSION of Fusen News. The 
only reason I'm posting this is because I still see people using Fusen 
News 3.3.
Vendors: Not contacted (Upgrade available with fix)

A vulnerability exists in Fusen News 3.3 that allows attackers to add 
accounts with admin or normal privlidges. If an account is added, the 
attacker will be able to modify news, post news, delete/add accounts, 
etc. When adding accounts, Fusen News 3.3 does not perform a login check, 
allowing anyone to add accounts through a direct URL.

A sample is listed below

http://www.website.com/FusenNews/?
id=signup&username=DarkKnight&email=EMAIL@EMAIL.COM+&password=123456&icon=
&le=3

The above URL would add the account "DarkKnight" with the 
password "123456" and the email "EMAIL@EMAIL.COM" with Administrator 
abilities to the account list.

The vendor has already made upgrades for Fusen News 3.3 so to fix the 
vulnerability just upgrade. Besides, Fusen News 3.6 looks hot.

The two people who deserve credit for this vulnerability are: Fusen and 
DarkKnight [me :)]

Want great hosting? Get it at http://www.onlinehoster.com

Prev by Date: [RHSA-2003:199-02] Updated unzip packages fix trojan vulnerability
Next by Date: Re: Buffer overflow prevention
Prev by thread: [RHSA-2003:199-02] Updated unzip packages fix trojan vulnerability
Next by thread: Best Buy Employee Toolkit Vulnerability
Index(es):
- Date
- Thread