$Id: bosen-adv.4,v1 08/06/2003 bosen Exp $

1ndonesian Security Team (1st)
Bosen Advisory #4 Comersus Shopping Cart
08/06/2003




[1st] Comersus Shopping Cart Information Disclosure
_______________________________________________________________________________


1ndonesian Security Team (1st)
http://bosen.net/releases/
==============================================================================================
Security Advisory



Advisory Name: Comersus Shopping Cart Information Disclosure
 Release Date: 05/25/2003
  Application: 4.29
     Platform: Win32
     Severity: High/Remote 
     BUG Type: Information Disclosure
       Author: Bosen <mobile@bosen.net>
  Discover by: Bosen <mobile@bosen.net>
Vendor Status: Notified, see response below.
   Vendor URL: http://www.comersus.com/
    Reference: http://bosen.net/releases/



Overview:
Comersus is a sophisticated e-commerce system resulting from research and experience 
accumulated through years of work in electronic commerce strategies. 
The commercial implementation of the system was accomplished in the year 2000, 
in the Open Source mode. 



Details:
The commercial implementation of the system was accomplished in the year 2000, 
in the Open Source mode. 
In the distribution package, this shopping cart put the database information
in public place. 



Exploits:
http://[target_site_with_sopping_cart_installed]/database/comersus.mdb


Vendor Response:
Contacted with no response


Recommendation:
Protect /database/ directory.


1ndonesian Security Team (1st) Advisory:
http://bosen.net/releases/



About 1ndonesian Security Team:
1ndonesian Security Team, research and develop intelligent, advanced application
security assessment. Based in Indonesia, 1ndonesian Security Team offers best of
breed security consulting services, specialising in application, host and network
security assessments.

1st provides security information and patches for use by the entire 1st community.

This information is provided freely to all interested parties and may be 
redistributed provided that it is not altered in any way, 1st is appropriately 
credited and the document retains.


Greetz to: 
AresU, TioEuy, sakitjiwa, syzwz, muthafuka, negative and all 1ndonesian Security Team



Bosen <mobile@bosen.net>
======================
Original document can be fount at http://bosen.net/releases/?id=33