Pantek Library

Hosting Provided By

CybrHost

High Speed Hosting

OWL Intranet Engine

From: <tony(at)libpcap.net>
Date: Sun May 18 2003 - 01:59:13 EDT

I was checking out the advisory, and noticed this clip:

        // Remove this else in a future version
        else {
           if ($username == "admin") {
                $sql->query("select * from $default->owl_users_table

where username = '$username' and password = '$password'");

I wonder what would happen if username was admin, and password was: ' OR 1=1 AND username = 'admin

Seems like a highly likely candidate for SQL injection.. anyone care to give a little insight? Perhaps even test it out using httpush or something?

-- 
+ Microsoft doesn't believe in free() code.

Received on Sun May 18 22:11:28 2003

This message: [ Message body ]
Next message: Chris A. Mattingly: "Re: OWL Intranet Engine"
Previous message: Valdis.Kletnieks(at)vt.edu: "Re: vulndev-1 and a suggestion about the ensuing discussion"
Next in thread: Chris A. Mattingly: "Re: OWL Intranet Engine"
Reply: Chris A. Mattingly: "Re: OWL Intranet Engine"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:07:39 EDT

Contact Us Legal Notices Order Services Online
Pantek Home Privacy Policy IT news Site Map Pantek Library