CVE-2006-0522

Symantec Sygate Management Server <= 4.1 build 1417 - SQL Injection via Authentication Servlet

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-0522. PoCs published by Nicob.

AI-analyzed exploit summary This exploit leverages an unauthenticated SQL injection vulnerability in Sygate Management Server v4.1 to create/modify admin accounts or reset passwords via crafted HTTP requests. It uses SHA-1 hashing for password generation and targets the login servlet.

Description

SQL injection vulnerability in the Authentication Servlet in Symantec Sygate Management Server (SMS) version 4.1 build 1417 and earlier allows remote attackers to execute arbitrary SQL commands and bypass authentication via unknown attack vectors related to a URL.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Nicob · webappscgi

https://www.exploit-db.com/exploits/1680

View Code ZIP pw:eip

This exploit leverages an unauthenticated SQL injection vulnerability in Sygate Management Server v4.1 to create/modify admin accounts or reset passwords via crafted HTTP requests. It uses SHA-1 hashing for password generation and targets the login servlet.

Classification

Working Poc 100%

Attack Type

Sqli

Complexity

Moderate

Reliability

Reliable

Target: Sygate Management Server v4.1

No auth needed

Prerequisites: Network access to the admin interface (HTTP) · Digest::SHA1 Perl module

MITRE ATT&CK