CVE-2000-1230
published 2000-12-31CVE-2000-1230: Backdoor in auth.php3 in Phorum 3.0.7 allows remote attackers to access restricted web pages via an HTTP request with the PHP_AUTH_USER parameter set to…
PriorityP420medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
3.25%
86.8th percentile
Backdoor in auth.php3 in Phorum 3.0.7 allows remote attackers to access restricted web pages via an HTTP request with the PHP_AUTH_USER parameter set to "boogieman".
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| chrome_chrome | — | — | |
| phorum | phorum | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-h9p6-q3mf-6wj3: Backdoor in auth
ghsa_unreviewed·2022-04-30
CVE-2000-1230 [MEDIUM] GHSA-h9p6-q3mf-6wj3: Backdoor in auth
Backdoor in auth.php3 in Phorum 3.0.7 allows remote attackers to access restricted web pages via an HTTP request with the PHP_AUTH_USER parameter set to "boogieman".
Chrome
Stable Channel Update for Desktop: CVE-2023-1228
vendor_chrome·2023-03-07·CVSS 4.3
CVE-2023-1228 [MEDIUM] Stable Channel Update for Desktop: CVE-2023-1228
Stable Channel Update for Desktop
CVE-2023-1228: Insufficient policy enforcement in Intents. Reported by Axel Chong on 2022-09-18 [$2000][ 1160485 ] Medium CVE-2023-1229: Inappropriate implementation in Permission prompts
Reported by Thomas Orlita on 2020-12-20 [$2000][ 1404230 ] Medium CVE-2023-1230: Inappropriate implementation in WebApp Installs
Severity: medium
No detection rules found.
Exploit-DB
Microsoft Windows XP/2000/NT 4.0 - NetDDE Privilege Escalation (1)
exploitdb·2002-10-09
CVE-2002-1230 Microsoft Windows XP/2000/NT 4.0 - NetDDE Privilege Escalation (1)
Microsoft Windows XP/2000/NT 4.0 - NetDDE Privilege Escalation (1)
---
// source: https://www.securityfocus.com/bid/5927/info
The Winlogon NetDDE Agent can be leveraged to allow local privilege escalation. This is related to the Microsoft Windows Window Message Subsystem Design Error Vulnerability (BID 5408). A local user can use a WM_COPYDATA message to send arbitrary code to NetDDE, which will be executed with Local System privileges when a second WM_TIMER message is sent.
//
/////////// Copyright Serus 2002////////////////
//mailto:[email protected]
//
//This program check system on winlogon bug present
//Only for Windows 2000
//This is for check use only!
//
#include
#include
void main(int argc, char *argv[ ], char *envp[ ] )
{
char *buf;
DWORD Addr = 0;
BOOL bExec = TRUE;
uns
Exploit-DB
Microsoft Windows XP/2000/NT 4.0 - NetDDE Privilege Escalation (2)
exploitdb·2002-10-09
CVE-2002-1230 Microsoft Windows XP/2000/NT 4.0 - NetDDE Privilege Escalation (2)
Microsoft Windows XP/2000/NT 4.0 - NetDDE Privilege Escalation (2)
---
// source: https://www.securityfocus.com/bid/5927/info
The Winlogon NetDDE Agent can be leveraged to allow local privilege escalation. This is related to the Microsoft Windows Window Message Subsystem Design Error Vulnerability (BID 5408). A local user can use a WM_COPYDATA message to send arbitrary code to NetDDE, which will be executed with Local System privileges when a second WM_TIMER message is sent.
/* GedAd2 */
//
/////////// Copyright (c) 2002 Serus ////////////////
//mailto:[email protected]
//
//This program check system on winlogon bug present
//Only for Windows 2000 and Windows XP
//This is for check use only!
//
#include
#include
void main(int argc, char *argv[ ], char *envp[ ] )
{
char *buf;
DWORD
Exploit-DB
Microsoft Windows XP/2000/NT 4.0 - Window Message Subsystem Design Error (2)
exploitdb·2002-08-06
CVE-2002-1230 Microsoft Windows XP/2000/NT 4.0 - Window Message Subsystem Design Error (2)
Microsoft Windows XP/2000/NT 4.0 - Window Message Subsystem Design Error (2)
---
// source: https://www.securityfocus.com/bid/5408/info
A serious design error in the Win32 API has been reported. The issue is related to the inter-window message passing system. This vulnerability is wide-ranging and likely affects almost every Win32 window-based application. Attackers with local access may exploit this vulnerability to elevate privileges if a window belonging to another process with higher privileges is present. One example of such a process is antivirus software, which often must run with LocalSystem privileges.
** Microsoft has released a statement regarding this issue. Please see the References section for details.
A paper, entitled "Win32 Message Vulnerabilities Redux" has been publ
Exploit-DB
Microsoft Windows XP/2000/NT 4.0 - Window Message Subsystem Design Error (8)
exploitdb·2002-08-06
CVE-2002-1230 Microsoft Windows XP/2000/NT 4.0 - Window Message Subsystem Design Error (8)
Microsoft Windows XP/2000/NT 4.0 - Window Message Subsystem Design Error (8)
---
source: https://www.securityfocus.com/bid/5408/info
A serious design error in the Win32 API has been reported. The issue is related to the inter-window message passing system. This vulnerability is wide-ranging and likely affects almost every Win32 window-based application. Attackers with local access may exploit this vulnerability to elevate privileges if a window belonging to another process with higher privileges is present. One example of such a process is antivirus software, which often must run with LocalSystem privileges.
** Microsoft has released a statement regarding this issue. Please see the References section for details.
A paper, entitled "Win32 Message Vulnerabilities Redux" has been publish
Exploit-DB
Microsoft Windows XP/2000/NT 4.0 - Window Message Subsystem Design Error (4)
exploitdb·2002-08-06
CVE-2002-1230 Microsoft Windows XP/2000/NT 4.0 - Window Message Subsystem Design Error (4)
Microsoft Windows XP/2000/NT 4.0 - Window Message Subsystem Design Error (4)
---
// source: https://www.securityfocus.com/bid/5408/info
A serious design error in the Win32 API has been reported. The issue is related to the inter-window message passing system. This vulnerability is wide-ranging and likely affects almost every Win32 window-based application. Attackers with local access may exploit this vulnerability to elevate privileges if a window belonging to another process with higher privileges is present. One example of such a process is antivirus software, which often must run with LocalSystem privileges.
** Microsoft has released a statement regarding this issue. Please see the References section for details.
A paper, entitled "Win32 Message Vulnerabilities Redux" has been publ
Exploit-DB
Microsoft Windows XP/2000/NT 4.0 - Window Message Subsystem Design Error (5)
exploitdb·2002-08-06
CVE-2002-1230 Microsoft Windows XP/2000/NT 4.0 - Window Message Subsystem Design Error (5)
Microsoft Windows XP/2000/NT 4.0 - Window Message Subsystem Design Error (5)
---
// source: https://www.securityfocus.com/bid/5408/info
A serious design error in the Win32 API has been reported. The issue is related to the inter-window message passing system. This vulnerability is wide-ranging and likely affects almost every Win32 window-based application. Attackers with local access may exploit this vulnerability to elevate privileges if a window belonging to another process with higher privileges is present. One example of such a process is antivirus software, which often must run with LocalSystem privileges.
** Microsoft has released a statement regarding this issue. Please see the References section for details.
A paper, entitled "Win32 Message Vulnerabilities Redux" has been publ
Exploit-DB
Microsoft Windows XP/2000/NT 4.0 - Window Message Subsystem Design Error (6)
exploitdb·2002-08-06
CVE-2002-1230 Microsoft Windows XP/2000/NT 4.0 - Window Message Subsystem Design Error (6)
Microsoft Windows XP/2000/NT 4.0 - Window Message Subsystem Design Error (6)
---
// source: https://www.securityfocus.com/bid/5408/info
A serious design error in the Win32 API has been reported. The issue is related to the inter-window message passing system. This vulnerability is wide-ranging and likely affects almost every Win32 window-based application. Attackers with local access may exploit this vulnerability to elevate privileges if a window belonging to another process with higher privileges is present. One example of such a process is antivirus software, which often must run with LocalSystem privileges.
** Microsoft has released a statement regarding this issue. Please see the References section for details.
A paper, entitled "Win32 Message Vulnerabilities Redux" has been publ
Exploit-DB
Microsoft Windows XP/2000/NT 4.0 - Window Message Subsystem Design Error (3)
exploitdb·2002-08-06
CVE-2002-1230 Microsoft Windows XP/2000/NT 4.0 - Window Message Subsystem Design Error (3)
Microsoft Windows XP/2000/NT 4.0 - Window Message Subsystem Design Error (3)
---
// source: https://www.securityfocus.com/bid/5408/info
A serious design error in the Win32 API has been reported. The issue is related to the inter-window message passing system. This vulnerability is wide-ranging and likely affects almost every Win32 window-based application. Attackers with local access may exploit this vulnerability to elevate privileges if a window belonging to another process with higher privileges is present. One example of such a process is antivirus software, which often must run with LocalSystem privileges.
** Microsoft has released a statement regarding this issue. Please see the References section for details.
A paper, entitled "Win32 Message Vulnerabilities Redux" has been publ
Exploit-DB
Microsoft Windows XP/2000/NT 4.0 - Window Message Subsystem Design Error (7)
exploitdb·2002-08-06
CVE-2002-1230 Microsoft Windows XP/2000/NT 4.0 - Window Message Subsystem Design Error (7)
Microsoft Windows XP/2000/NT 4.0 - Window Message Subsystem Design Error (7)
---
source: https://www.securityfocus.com/bid/5408/info
A serious design error in the Win32 API has been reported. The issue is related to the inter-window message passing system. This vulnerability is wide-ranging and likely affects almost every Win32 window-based application. Attackers with local access may exploit this vulnerability to elevate privileges if a window belonging to another process with higher privileges is present. One example of such a process is antivirus software, which often must run with LocalSystem privileges.
** Microsoft has released a statement regarding this issue. Please see the References section for details.
A paper, entitled "Win32 Message Vulnerabilities Redux" has been publish
Exploit-DB
Microsoft Windows XP/2000/NT 4.0 - Window Message Subsystem Design Error (1)
exploitdb·2002-08-06
CVE-2002-1230 Microsoft Windows XP/2000/NT 4.0 - Window Message Subsystem Design Error (1)
Microsoft Windows XP/2000/NT 4.0 - Window Message Subsystem Design Error (1)
---
// source: https://www.securityfocus.com/bid/5408/info
A serious design error in the Win32 API has been reported. The issue is related to the inter-window message passing system. This vulnerability is wide-ranging and likely affects almost every Win32 window-based application. Attackers with local access may exploit this vulnerability to elevate privileges if a window belonging to another process with higher privileges is present. One example of such a process is antivirus software, which often must run with LocalSystem privileges.
** Microsoft has released a statement regarding this issue. Please see the References section for details.
A paper, entitled "Win32 Message Vulnerabilities Redux" has been publ
Exploit-DB
Phorum 3.0.7 - 'auth.php3' Backdoor Access
exploitdb·2000-01-06
CVE-2000-1230 Phorum 3.0.7 - 'auth.php3' Backdoor Access
Phorum 3.0.7 - 'auth.php3' Backdoor Access
---
source: https://www.securityfocus.com/bid/2274/info
Phorum is a freely available, open source, popular WWW Board written by Brian Moon. It is designed to enhance the services offered on a web page, allow users to interact with one another through bulletin board chat and discussion.
A problem with the package allows users access to any resources within the bulletin board system. Any file that is access controlled by the auth.php3 script may be accessed, due to a backdoor password written into the script auth.php3. The password "boogieman" will permit users to access files controlled by auth.php3 by simply appending the variable PHP_AUTH_USER=boogieman to the URL. This makes it possible for users with malicious intentions to access any file
No writeups or analysis indexed.
http://cert.uni-stuttgart.de/archive/bugtraq/2000/01/msg00215.htmlhttp://hispahack.ccc.de/mi020.htmlhttp://www.digitalsec.net/stuff/z-mirrors/hispahack/mi020.htmhttp://www.securityfocus.com/bid/2274http://cert.uni-stuttgart.de/archive/bugtraq/2000/01/msg00215.htmlhttp://hispahack.ccc.de/mi020.htmlhttp://www.digitalsec.net/stuff/z-mirrors/hispahack/mi020.htmhttp://www.securityfocus.com/bid/2274
2000-12-31
Published