Hot Area Banner Rotation 01 and Dream Catcher Advertiser World-Readable Password Vulnerability

Hot Area Banner Rotation 01 and Dream Catcher Advertiser World-Readable Password Vulnerability

Hot Area Banner Rotation 01 and Dream Catcher Advertiser stores its administrative password in the file adpassword.txt. Although the password is DES encrypted, it is world-readable by any remote user. Thus, a password cracker could be used by a malicious to decrypt it. By default, the password is 'admin' and appears DES encrypted as 'aaLR8vE.jjhss' in adpassword.txt.

Administrative controls include editing, removing, and adding of advertisement banners.