HTTP: Siteman User Database Privilege Escalation
This signature detects an attempt to exploit a privilege escalation vulnerability in the "users.php" script, which is shipped as part of Siteman 1.1.x. An authorized user, can gain elevated privileges by supplying a malformed HTTP POST request to this script.
Extended Description
Siteman is reported prone to a vulnerability that may allow users to gain elevated privileges. This issue results from insufficient sanitization of user-supplied data. Apparently, an attacker can supply additional lines to the stream used to write to the user database file through a URI parameter. This can allow the attacker to corrupt the user database file and potentially gain administrative privileges to the Siteman application. Siteman 1.1.10 and prior versions are affected by this vulnerability.
Affected Products
Siteman siteman
Short Name
HTTP:PHP:SITEMAN-USER
Severity
Minor
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
Database Escalation Privilege Siteman User bid:12304
Release Date
08/03/2005
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Siteman