Owl Intranet Engine < 0.91 Multiple Vulnerabilities

High Nessus Network Monitor Plugin ID 3729

Synopsis

The remote web server contains a PHP application that is prone to several issues.

Description

The remote host is running Owl Intranet Engine, a web-based document management system written in PHP. The version of Owl Intranet Engine on the remote host fails to sanitize input to the session ID cookie before using it in a database query. Provided PHP's 'magic_quotes_gpc' setting is disabled, an unauthenticated attacker may be able to exploit this issue to uncover sensitive information such as password hashes, modify data, launch attacks against the underlying database, and more. In addition, the application reportedly suffers from at least one cross-site scripting (XSS) issue.

Solution

Upgrade or patch according to vendor recommendations.

See Also

http://sourceforge.net/forum/forum.php?forum_id=601910

http://sourceforge.net/projects/owl

Plugin Details

Severity: High

ID: 3729

Family: CGI

Published: 2006/08/17

Modified: 2018/07/11

Dependencies: 1442

Nessus ID: 22232

Risk Information

Risk Factor: High

CVSSv2

Base Score: 7.5

Temporal Score: 7.1

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:F/RL:U/RC:C

CVSSv3

Base Score: 7.3

Temporal Score: 7.1

Vector: CVSS3#AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Temporal Vector: CVSS3#E:F/RL:U/RC:C

Vulnerability Information

CPE: cpe:/a:b0zz_and_chris_vincent:owl_intranet_engine

Reference Information

CVE: CVE-2006-4212, CVE-2006-4211

BID: 19552