| 제목 | Industrial Application Software - IAS Canias ERP 8.03-- Observable Response Discrepancy (CWE-204) |
|---|
| 설명 | A vulnerability has been found in Industrial Application Software caniasERP 8.03 and classified as medium. The affected function is doAction of the component Login RMI Interface (default TCP port 27499). The manipulation leads to information disclosure through observable response discrepancy (CWE-204). The attack can be launched remotely without authentication. The server returns distinct status codes for non-existent usernames (USERNOTFOUND, code 1) versus incorrect passwords (USERWRONGPASSWORD, code 2), enabling systematic enumeration of all valid user accounts. The iasLoginResponseStatus enum defines 35 distinct codes, allowing an attacker to determine with certainty whether a given username exists without knowing any valid password.
Discovered by Bilal Güneş (@b1lal) of HawkTrace. |
|---|
| 원천 | ⚠️ https://gist.github.com/0xb1lal/85422a63c10a001c75a22365457de624 |
|---|
| 사용자 | b1lal (UID 97312) |
|---|
| 제출 | 2026. 04. 20. PM 06:07 (2 개월 ago) |
|---|
| 모더레이션 | 2026. 05. 09. PM 06:33 (19 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 362458 [Industrial Application Software IAS Canias ERP 8.03 Login RMI Interface doAction 정보 공개] |
|---|
| 포인트들 | 20 |
|---|