N/A

Jenzabar JICS (aka Internet Campus Solution) before 9.0.1 Patch 3, 9.1 before 9.1.2 Patch 2, and 9.2 before 9.2.2 Patch 8 has session cookies that are a deterministic function of the username. There is a hard-coded password to supply a PBKDF feeding into AES to encrypt a username and base64 encode it to a client-side cookie for persistent session authentication. By knowing the key and algorithm, an attacker can select any username, encrypt it, base64 encode it, and save it in their browser with the correct JICSLoginCookie cookie format to impersonate any real user in the JICS database without the need for authenticating (or verifying with MFA if implemented).

N/A

N/A

Jenzabar Internet Campus Solution 授权问题漏洞

Jenzabar Internet Campus Solution（JICS）是美国Jenzabar公司的一套学校管理系统。该系统包括课程管理、招生管理、财务管理和人力资源管理等功能。 Jenzabar Internet Campus Solution 9.0.1 Patch 3之前版本、 9.1.2 Patch 2之前的9.1版本和9.2.2 Patch 8之前的9.2版本中存在授权问题漏洞。攻击者可借助有效的用户名利用该漏洞绕过身份验证机制，冒充任意用户。

N/A

N/A