CVE-2013-4945

Name of the Vulnerable Software and Affected Versions BMC Service Desk Express (SDE) version 10.2.1.95

Description The issue allows remote attackers to execute arbitrary SQL commands. This can be achieved via several cookie parameters to the "DashBoardGUI.aspx" endpoint, including ASPSESSIONIDASSRATTQ, TABLE WIDGET 1, TABLE WIDGET 2, browserDateTimeInfo, and browserNumberInfo. Additionally, the UID parameter to the "login.aspx" endpoint is vulnerable.

Recommendations For BMC Service Desk Express (SDE) version 10.2.1.95, consider restricting access to the "DashBoardGUI.aspx" and "login.aspx" endpoints until a patch is available. As a temporary workaround, avoid using the vulnerable parameters ASPSESSIONIDASSRATTQ, TABLE WIDGET 1, TABLE WIDGET 2, browserDateTimeInfo, browserNumberInfo, and UID in the respective endpoints.