____ _ _ ____ ____ ____ ___ ____ (_ _)( )_( )( ___) (_ _)( ___)/ __)(_ _) )( ) _ ( )__) )( )__) \__ \ )( (__) (_) (_)(____) (__) (____)(___/ (__) __ __ __ _ _ __ ___ ____ ____ ( \/ ) /__\ ( \( ) /__\ / __)( ___)( _ \ ) ( /(__)\ ) ( /(__)\( (_-. )__) ) / (_/\/\_)(__)(__)(_)\_)(__)(__)\___/(____)(_)\_) Ligat Security - Authentication Bypass ------------------------------------- Vulnerability ID: Month Of Full Disclosure 3 = MOFD3 ------------------------------------ Product: LocatePC ------------------------------------- Vendor: Ligatt Security Inc ( https://www.ligattsecurity.com ) ------------------------------------- Vendor Tag Lines: Cyber Security is never an issue with LIGATT on your side ------------------------------------- Vendor Notification: 05 August 2010 Public Disclosure: 05 August 2010 ------------------------------------- Vulnerability Type: Authentication Bypass ------------------------------------- Status: Public Disclosure - Not Fixed, Vendor Alerted, Awaiting Vendor Response ------------------------------------- Risk level: High ------------------------------------- Credit: Martin Hall - TheTestManager Site = http://www.thetestmanager.com twitter = @thetestmanager ------------------------------------- Vulnerability Details: If you visit the LocatPc page https://www.ligattsecurity.com/locatePC/working/ in a normal browser you will be redirected to the login page. https://www.ligattsecurity.com/locatePC/working/login.php However if you visit the same URL in a browser where Follow Redirects is turned off then you will not be redirected and you will be able to use the LocatePC functionality. Instructions Follow for Opera. Click on Tools Click on Preferences Click on Advanced Click on Network Untick "Enable automatic redirection" Click on OK Now follow this URL https://www.ligattsecurity.com/locatePC/working/ ------------------------------------- Sample URL's https://www.ligattsecurity.com/locatePC/working/ ------------------------------------- Solution: Currently I'm not aware of any vendor-supplied patches or other solutions. If you are aware of more recent information related to this issue please notify me at: martin@hb-help.com ------------------------------------- Other Miscellany Information http://attrition.org/errata/charlatan/gregory_evans/ligatt02/