Preemptive Protection against SQL Injection Vulnerability in Subdreamer
| Attack ID: | CPAI-2005-52 |
 |
|
| Publish Date: | |
|
|
| Category: | SQL Injection |
|
|
| Vulnerable Systems: | Subdreamer Light |
|
|
| Source: | SecuriTeam |
|
|
| Description: | Subdreamer is a PHP-based content management system. Subdreamer is vulnerable to SQL injection attacks, caused by failure of the application to sanitize user-supplied input in several parameters. By sending a specially crafted request to a vulnerable system, a remote attacker could execute malicious SQL code on the backend SQL database, which may lead to data theft, gaining remote control of the server and more. |
|
|
| Severity: | |
|
|
| Details: | Subdreamer does not properly validate user-supplied input in the core.php script. A remote attacker could supply a crafted request to the core.php script containing malicious SQL code to exeute arbitrary SQL queries. To trigger this vulnerability, magic_quotes_gpc should be disabled. |
|
|
| Attack Detection: | Users of VPN-1 NG with Application Intelligence R55W and Connectra that have enabled the solution outlined below, will identify SQL Injection attacks by the following entries (example only):
|
|
|
| Solution: | Users of VPN-1 NG with Application Intelligence R55W with Web Intelligence license as well as users of Connectra who have applied the SQL Injection protection as advised in CPSA-2004-02 are preemptively protected against this vulnerability. To verify that your SQL injection protection is enabled, please refer to CPSA-2004-02. |
|
|
| Industry Reference: | CAN-2005-0805 |
|
|
| Additional Information: | |