#VU12710 Authentication bypass issues in 427BB - CVE-2006-0153

Cybersecurity Help s.r.o.

Published: 2018-05-15 | Updated: 2018-09-14

Vulnerability identifier: #VU12710

Vulnerability risk: Low

CVSSv4.0: 5.5 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/U:Clear]

CVE-ID: CVE-2006-0153

CWE-ID: CWE-592

Exploitation vector: Network

Exploit availability: Yes

Vulnerable software:
427BB
Hardware solutions / Firmware

Vendor: fourtwosevenbb.sourceforge.net

Description

The vulnerability allows a remote attacker to bypass security restrictions on the target system.

The weakness exists due to verifying authentication credentials based on the username, authenticated, and usertype cookies. A remote attacker can bypass authentication by using a valid username and usertype and setting the authenticated cookie.

Mitigation
Install update from vendor's website.

Vulnerable software versions

427BB: 2.2 - 2.2.1

External links
https://evuln.com/labs/advisories/18/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

Latest bulletins with this vulnerability

Multiple vulnerabilities in 427BB