CVE-2006-1541

ezaspsite < 2.0_rc3 - SQL Injection via Default.asp Scheme Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-1541. PoCs published by nukedx.

AI-analyzed exploit summary This Perl script exploits a SQL injection vulnerability in EzASPSite v2.0 RC3 by injecting a malicious SQL query to extract admin credentials. It sends an HTTP request with a crafted query to retrieve the username and password hash.

Description

SQL injection vulnerability in Default.asp in EzASPSite 2.0 RC3 and earlier allows remote attackers to execute arbitrary SQL commands and obtain the SHA1 hash of the admin password via the Scheme parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by nukedx · perlwebappsasp

https://www.exploit-db.com/exploits/1623

View Code ZIP pw:eip

This Perl script exploits a SQL injection vulnerability in EzASPSite v2.0 RC3 by injecting a malicious SQL query to extract admin credentials. It sends an HTTP request with a crafted query to retrieve the username and password hash.

Classification

Working Poc 95%

Attack Type

Sqli

Complexity

Trivial

Reliability

Reliable

Target: EzASPSite <= 2.0 RC3

No auth needed

Prerequisites: Target must be running EzASPSite <= 2.0 RC3 · Target must be accessible via HTTP

MITRE ATT&CK