Home page logo
/

bugtraq logo Bugtraq mailing list archives

Cart32 admin password vulnerability
From: Colin Hart <info () COLINHART COM>
Date: Mon, 6 Nov 2000 20:18:15 -0000

Joint advisory issued by Cart32 and Colin Hart
---------------------------------------
Date Published:
6th November 2000
---------------------------------------
Title:
Cart32 admin password vulnerability
---------------------------------------
Vulnerable Packages/Systems:
Cart32 v3.5 build 619, in the default configuration from a remote
installation. Earlier versions with other installation methods may be
affected
---------------------------------------
Vulnerability Description:
The Cart32 installation creates a file, cart32.ini, which contains the
administrator password in hashed form.

The encryption on the password is weak and can easily be broken. At
Cart32's request the algorithm will not be disclosed in this advisory.

Also, in some circumstances, the cart32.ini may contain the current and
historical administrative passwords in plaintext in the Debug section
of the file.
---------------------------------------
Solution:
1) Upgrade to version 3.5a build 710, which contains stronger password
encryption and removes the debug issue, as soon as possible. It is
available from http://www.cart32.com/update

2) Follow Cart32's advice on how to secure your Cart32 files which is
at http://www.cart32.com/kbshow.asp?article=C050 and includes a
reference to the location of the cart32.ini file. There are other
articles in their knowledge base regarding securing your cart32
installation.

You can download a 30-day demo of Cart32 at http://www.cart32.com .

For info on previous Cart32 issues see;
http://www.cerberus-infosec.co.uk/advcart32.html
---------------------------------------
About:
Cart32 is a product of McMurtrey/Whitaker & Associates, Inc. which has
been in business since 1989 developing software solutions for clients
worldwide.
support () cart32 com

Colin Hart is a UK based, independent consultant specialising in NT
systems, their design, administration and security for small, medium
and large organisations internationally.
---------------------------------------
Thanks:
From Colin Hart to;
Bryan Whitaker for swift action and cooperation.
RFP for RFPolicy
Trey
---------------------------------------
You may copy or redistribute this advisory but only in its entirety.
(c) Colin Hart 2000

This advisory was created using RFPolicy 2.0;
http://www.wiretrip.net/rfp/policy.html 


  By Date           By Thread  

Current thread:
  • Cart32 admin password vulnerability Colin Hart (Nov 08)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault