Title: Hosting Controller Hidden Field Password Changing Vulnerability
Severity: CRITICAL
Description:
Hosting Controller is an application which consolidates all hosting tasks into one interface. Hosting Controller runs on Microsoft Windows operating systems.
A problem with Hosting Controller may make it possible for a user to change arbitrary passwords.
A problem has been discovered that could allow users with valid accounts via Hosting Controller to change arbitrary passwords. Hosting Controller uses a hidden field to specify the username when a password change is performed. By changing the name of the user specified in the hidden field, it is possible to change the password for that respective user. This function is performed with the /accounts/updateuserdesc.asp script.
This problem could make it possible for an attacker to change a password for any user. This includes Administrator, and could allow a remote user to gain administrative access to a vulnerable Hosting Controller system.
Affected Products:
- Hosting Controller Hosting Controller 1.4.0
- Hosting Controller Hosting Controller 2002 0.0.0
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
