CVE-2004-2172
CVSS5.0
发布时间 :2004-12-31 00:00:00
修订时间 :2008-09-05 16:43:23
NMCOE    

[原文]EarlyImpact ProductCart uses a weak encryption scheme to encrypt passwords, which allows remote attackers to obtain the password via a chosen plaintext attack.


[CNNVD]EarlyImpact ProductCart多个漏洞(CNNVD-200412-817)

        EarlyImpact ProductCart使用一个弱加密计划加密密码,远程攻击者可以借助一个已选纯文本攻击获取密码。

- CVSS (基础分值)

CVSS分值: 5 [中等(MEDIUM)]
机密性影响: PARTIAL [很可能造成信息泄露]
完整性影响: NONE [不会对系统完整性产生影响]
可用性影响: NONE [对系统可用性无影响]
攻击复杂度: LOW [漏洞利用没有访问限制 ]
攻击向量: [--]
身份认证: NONE [漏洞利用无需身份认证]

- CPE (受影响的平台与产品)

cpe:/a:early_impact:productcart:1.6003
cpe:/a:early_impact:productcart:2.5
cpe:/a:early_impact:productcart:2.0_br000
cpe:/a:early_impact:productcart:1.6_br003
cpe:/a:early_impact:productcart:1.5003
cpe:/a:early_impact:productcart:1.5004
cpe:/a:early_impact:productcart:1.6_b001
cpe:/a:early_impact:productcart:1.6002
cpe:/a:early_impact:productcart:1.6_b
cpe:/a:early_impact:productcart:1.6_br001
cpe:/a:early_impact:productcart:1.5002
cpe:/a:early_impact:productcart:1.5
cpe:/a:early_impact:productcart:1.6_b002
cpe:/a:early_impact:productcart:1.6_b003
cpe:/a:early_impact:productcart:2.0
cpe:/a:early_impact:productcart:1.5003r
cpe:/a:early_impact:productcart:1.6_br

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-2172
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2004-2172
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200412-817
(官方数据源) CNNVD

- 其它链接及资源

http://xforce.iss.net/xforce/xfdb/15231
(PATCH)  XF  productcart-keystream-obtain-information(15231)
http://www.securityfocus.com/bid/9669
(PATCH)  BID  9669
http://www.s-quadra.com/advisories/Adv-20040216.txt
(VENDOR_ADVISORY)  MISC  http://www.s-quadra.com/advisories/Adv-20040216.txt
http://archives.neohapsis.com/archives/bugtraq/2004-02/0503.html
(VENDOR_ADVISORY)  BUGTRAQ  20040218 Re: EarlyImpact ProductCart shopping cart software multiple security vulnerabilities
http://www.securityfocus.com/archive/1/354288
(VENDOR_ADVISORY)  BUGTRAQ  20040216 EarlyImpact ProductCart shopping cart software multiple security vulnerabilities
http://www.osvdb.org/3979
(UNKNOWN)  OSVDB  3979
http://www.earlyimpact.com/productcart/support/updates/ReadMe_ProductCart_Security_Patch_013004.txt
(UNKNOWN)  CONFIRM  http://www.earlyimpact.com/productcart/support/updates/ReadMe_ProductCart_Security_Patch_013004.txt
http://securitytracker.com/alerts/2004/Feb/1009085.html
(UNKNOWN)  SECTRACK  1009085
http://secunia.com/advisories/10898
(UNKNOWN)  SECUNIA  10898
http://archives.neohapsis.com/archives/fulldisclosure/2004-02/0871.html
(VENDOR_ADVISORY)  FULLDISC  20040216 EarlyImpact ProductCart shopping cart software multiple security vulnerabilities

- 漏洞信息

EarlyImpact ProductCart多个漏洞
中危 未知
2004-12-31 00:00:00 2006-09-25 00:00:00
远程  
        EarlyImpact ProductCart使用一个弱加密计划加密密码,远程攻击者可以借助一个已选纯文本攻击获取密码。

- 公告与补丁

        An upgrade is available that is not vulnerable to this issue.
        The vendor has released a security update to deal with this issue.
        
        EarlyImpact ProductCart 2.5
        

- 漏洞信息 (23702)

ProductCart 1.x/2.x Weak Cryptography (EDBID:23702)
asp webapps
2004-02-16 Verified
0 Nick Gudov
N/A [点击下载]
source: http://www.securityfocus.com/bid/9669/info

EarlyImpact ProductCart is reportedly prone to multiple vulnerabilities. The specific issues include SQL injection, cross-site scripting and cryptographic weaknesses. These issues could expose sensitive data such as user credentials and allow for execution of hostile script code and HTML. These issues could allow for full compromise of the software.

An attacker register new customer in store. Let the value of 'First
Name' field in registration form will be equal to
'1*2*3*4*5*6*7*8*9*10*', the value of 'Last Name ' field will be equal
to '34567', the value of 'Password' field will be equal to '111' and the
value of 'Postal Code' field will be equal to '987654'.		

- 漏洞信息

3979
ProductCart Weak Cryptography
Remote / Network Access Authentication Management, Cryptographic
Loss of Integrity, Loss of Availability
Exploit Unknown

- 漏洞描述

ProductCart uses a single cryptographic key used to encrypt all customers and store administrator passwords. Because of this, it is possible for an attacker to perform a choosen plaintext attack resulting in the ability to decrypt any encrypted information from the database including store administrator password.

- 时间线

2004-02-17 Unknow
Unknow Unknow

- 解决方案

Currently, there are no known workarounds or upgrades to correct this issue. However, Early Impact has released a patch to address this vulnerability.

- 相关参考

- 漏洞作者

Unknown or Incomplete
 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站