[10302] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Shopping Carts exposing CC data

daemon@ATHENA.MIT.EDU (Louis R. Marascio)
Wed Apr 21 19:56:18 1999

Date: 	Tue, 20 Apr 1999 20:18:26 -0500
Reply-To: "Louis R. Marascio" <marascio@ECE.UTEXAS.EDU>
From: "Louis R. Marascio" <marascio@ECE.UTEXAS.EDU>
X-To:         Joe <joe@GONZO.BLARG.NET>
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To:  <Pine.LNX.3.96.990420132956.13470B-100000@gonzo.blarg.net>

> Mercantec's SoftCart http://www.mercantec.com/
>     Platform: Win32 (*Nix?)
>     ...
>     Number of exposed installs: 1
>     PGP Option Available?: Unknown
>     NOTES:
>
>     This one has only been found vulnerable on ONE server. (user error?)
The
>     encryption scheme on the storemgr.pw password is unrecognized by me
but
>     I'm not an encryption guru.  Someone's bound to recognize it.

Make that two, I found it located on what appears to be a decently sized
regional hardware/computer sales site.

Louis

--
Louis R. Marascio
 marascio@ece.utexas.edu
 http://www.ece.utexas.edu/~marascio


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[10302] in bugtraq

Re: Shopping Carts exposing CC data

daemon@ATHENA.MIT.EDU (Louis R. Marascio)Wed Apr 21 19:56:18 1999

daemon@ATHENA.MIT.EDU (Louis R. Marascio)
Wed Apr 21 19:56:18 1999