Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-2044

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-2044
Last Modified 19 Aug 2009 01:14:52
Published 01 May 2008 03:05:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-2044

Summary

includes/library.php in netOffice Dwins 1.3 p2 compares the demoSession variable to the 'true' string literal instead of the true boolean literal, which allows remote attackers to bypass authentication and execute arbitrary code by setting this variable to 1, as demonstrated by uploading a PHP script via an add action to projects_site/uploadfile.php.

Vulnerable Systems

Application

  • Netoffice Dwins 1.3


References

BID - 28051

BUGTRAQ - 20080502 Re: netOffice Dwins 1.3 Remote code execution.

BUGTRAQ - 20080229 netOffice Dwins 1.3 Remote code execution.

MISC - http://sourceforge.net/forum/forum.php?forum_id=814851

SREASON - 3845

SECUNIA - 29193

CONFIRM - http://netofficedwins.sourceforge.net/modules/news/article.php?storyid=47


Last Updated: 27 May 2016 10:47:44