Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbCerberus Security TeamEDB-ID:19881
HistoryApr 27, 2000 - 12:00 a.m.

McMurtrey/Whitaker & Associates Cart32 2.6/3.0 - Remote Administration Password

2000-04-2700:00:00
Cerberus Security Team
www.exploit-db.com
51

AI Score

7.4

Confidence

Low

JSON
source: https://www.securityfocus.com/bid/1153/info


Within cart32.exe, entering any password by way of http://target/scripts/cart32.exe/cart32clientlist, a remote user could obtain vital client information such as username, password, credit card numbers, and other crucial details. Passwords will appear encrypted, however they can be used in conjunction with specific URL requests which can be used to execute arbitrary commands.

In addition, by accessing http://target/scripts/c32web.exe/ChangeAdminPassword, a remote user is able to change the administrative password without prior knowledge of the previous password.

http://target/scripts/cart32.exe/cart32clientlist 
Any password can be used.

http://target/scripts/c32web.exe/ChangeAdminPassword

Related

cvelist 1
nvd 1
nessus 1
cve 1
cvelist
cvelist
CVE-2000-0429
2000-06-15 04:00:00
nvd
nvd
CVE-2000-0429
2000-04-27 04:00:00
nessus
nessus
Cart32 Backdoor Password Arbitrary Command Execution
2000-05-09 00:00:00
cve
cve
CVE-2000-0429
2000-06-15 04:00:00

AI Score

7.4

Confidence

Low

JSON
Related for EDB-ID:19881
cvelist1nvd1nessus1cve1