|
|
|
|
| |
| WebEvent is an interactive World Wide Web calendar and scheduling application that allows you to view and modify calendar-type events from any computer that can run a web browser. A security hole was discovered in the product that allows gaining of administrative privileges. |
| |
Credit:
The information has been provided by Anonymous.
|
| |
Vulnerable systems:
WebEvent version 3.3.3
This bug arises because Perl files are still accessible when the administrator runs the program for the first time. Once you run this Perl file, it asks you to enter in the admin info, e.g. password, name, email, etc.
Exploit:
Running the following URL will cause the mentioned vulnerability:
http://www.example.com/scripts/we3.3.3/webevent.pl?cmd=firsttime (this is used to change the admin info and pass)
Once that is been completed, you can logon using the following URL:
http://www.example.com/scripts/we3.3.3/webevent.pl?cmd=login (this is used to login)
Workaround:
One way around this is to simply delete the firsttime.pl file after you configured WebEvent.
|
|
|
|
|
|
|
|
|
|
