Title: AdMentor Remote SQL Injection Vulnerability
Severity: HIGH
Description:
AdMentor is a free collection of ASP scripts created by Stefan Holmberg. AdMentor provides banner ad rotation functionality.
An SQL injection vulnerability has been reported in some versions of AdMentor. During the login process, user supplied input is used to contruct a SQL query. If special characters such as ' are included in the 'userid' and 'pwd' parameters passed to the script, the query may be subverted.
It has been demonstrated that this can be used to authenticate as any account within the AdMentor system. It may be possible to further corrupt the query, although this has not been verified.
Other versions of AdMentor may share this vulnerability. This has not been verified.
Affected Products:
- Stefan Holmberg AdMentor 2.11.0
References:
- Stefan Holmberg: AdMentor Homepage
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
