Release DateAug 10, 2005 |
Severitylow |
ImpactAuthentication Bypass |
DescriptionIt indicates a attacker attempted to exploit a Authentication Bypass Vulnerability in AdCycle. AdCylce is a series of scripts that perform ad rotation on a website which uses a MySQL as a backend. The user authentication script fails to properly sanitize user input which could allow a malicious attack to alter the logic of the login script therby executing arbitrary MySQL commands. |
Affected ProductsAdcycle.com Adcycle 1.15 and earlier versions |
Recommended ActionsApply appropriate patch from the vendor or Upgrade to non-vulnerable version if available. |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2001-1053 |
Reference/shttp://www.securityfocus.com/bid/3032 (BugTraq) |
