CVE-2008-2044

Name of the Vulnerable Software and Affected Versions netOffice Dwins version 1.3 p2

Description The issue allows remote attackers to bypass authentication and execute arbitrary code. This is possible because the demoSession variable is compared to the 'true' string literal instead of the true boolean literal. Attackers can exploit this by setting the demoSession variable to 1, for example, by uploading a PHP script via an action to "projects site/uploadfile.php".

Recommendations For netOffice Dwins version 1.3 p2, consider modifying the comparison of the demoSession variable to use the true boolean literal instead of the 'true' string literal to prevent authentication bypass. As a temporary workaround, restrict access to the "projects site/uploadfile.php" endpoint to minimize the risk of exploitation.