SCRIPT CASE Privilege Escalation Vulnerability

A privilege escalation vulnerability has been identified in SCRIPT CASE version 1.0.002 Build 7, running on Windows Server 2019. This vulnerability allows remote attackers to reset passwords in the production environment without email validation or prior knowledge of the existing password. The issue arises from intercepting login requests and manipulating the HTTP response, bypassing authentication mechanisms. Exploiting this vulnerability grants access to the administration panel of the application.

Impact

Exploitation of this vulnerability allows for full account takeover by resetting passwords and gaining unauthorized access to the administration panel.

Reproduction

To reproduce this vulnerability, intercept a request to the login page of the SCRIPT CASE application. Change the response status from HTTP 302 to HTTP 200. This modification will display the password recovery screen, which lacks proper validation. From there, submit a password reset request without the necessary email verification or knowledge of the current password.

Remediation

Users are advised to update to SCRIPT CASE version 9.12.003, where this vulnerability has been fixed.