PT-2004-2461 · Aspwebalbum · Aspwebalbum

Published

2004-12-31

Updated

2017-10-11

CVE-2004-1553

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions aspWebAlbum version 3.2

Description The issue allows remote attackers to execute arbitrary SQL statements. This can be achieved via two methods:

the username field on the login page,
or the cat parameter to "album.asp". Specifically, the txtUserName parameter in a "processlogin" action to "album.asp" is involved, as reachable from the "login" action.

Recommendations For aspWebAlbum version 3.2, consider restricting access to the "album.asp" page and avoid using the txtUserName parameter in the "processlogin" action until a fix is available. As a temporary workaround, restrict the use of the cat parameter to minimize the risk of exploitation.

Exploit

Fix

SQL injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-89

Related Identifiers

CVE-2004-1553

Affected Products

Aspwebalbum

PT-2004-2461 · Aspwebalbum · Aspwebalbum

CVE-2004-1553

Weakness Enumeration

Related Identifiers

Affected Products

References · 12