Bugtraq mailing list archives

ValueClick CGI Vulnerability

From: philip () EINET BG (Philip Stoev)
Date: Sat, 19 Dec 1998 17:19:34 +0200


The ValueClick Online Advertising agency web interface has a CGI
vulnerability that allows easy username/password capture without using
sniffing software.

When you go to ValueClick home page (www.valueclick.com) and log on, your
username and password are embedded in the URL and if you subsequently leave
their site and go somewhere else, this URL will end up in this site's HTTP
refferer log which I beleive is a serious fault because one can easily not
just garble with your account, but also redirect any cheques you are about
to receive from ValueClick to himself.

ValueClick was notified several months ago and they responded they will
substitute GET with POST in their CGI, but they have taken no such action.

Sincerely,

Philip Stoev

-- Free SAT & TOEFL preparation softwate @ http://studywiz.hypermart.net
This message was sent by Philip Stoev (philip () einet bg)
tel: (359 2) 715949, 9549488 fax: (359 2) 544669

Current thread:

OSS nice tmp race Stefan Laudat (Dec 16)
- wordperfect 8 for linux security Edsel Adap (Dec 18)
  - new tcp scan method antirez (Dec 17)
  - Re: wordperfect 8 for linux security Dug Song (Dec 18)
  - Re: wordperfect 8 for linux security Keith Owens (Dec 18)
  - Irc: another funny stuff. In some irc clients dcc may be hijacked. awgn () COSMOS IT (Dec 19)
  - ValueClick CGI Vulnerability Philip Stoev (Dec 19)
  - FTP.SODRE.NET Hacked... Eggdrop Modified.. Geoffrey Huntley (Dec 19)
    - Re: FTP.SODRE.NET Hacked... Eggdrop Modified.. Matt Hallacy (Dec 19)
  - ip header id patched. awgn () COSMOS IT (Dec 19)
  - ValueClick Ellen (Dec 19)
- Re: OSS nice tmp race Pavel Kankovsky (Dec 18)
  - Re: OSS nice tmp race Dr. Mudge (Dec 18)
- Re: OSS nice tmp race Joel Eriksson (Dec 18)
- OSS nice tmp race the razor of love (Dec 18)
- <Possible follow-ups>
- Re: OSS nice tmp race Crispin Cowan (Dec 20)
- Re: OSS nice tmp race X-Force (Dec 21)

(Thread continues...)