mailing list archives
Re: Doubledot bug in FrontPage FrontPage Personal Web Server.
From: jeffd () EVCOM NET (Jeff Dafoe)
Date: Fri, 18 Feb 2000 22:10:21 -0500
On Fri, 18 Feb 2000, GALES,SIMON (Non-A-ColSprings,ex1) wrote:
I was able to reporduce this on a PWS installation under Win98
Evolution Communications, Inc.
Does this only occur on Win9x? Has anyone been able to reproduce this?
Jan, which OS/SP were you running?
I vaguely remember some discussion (in BugTraq or NTBugTraq maybe?) about
using "..." and/or "...." from the command prompt, and this is probably tied
to that problem.
G. Simon Gales
george_gales () non hp com <mailto:george_gales () non hp com>
From: Jan van de Rijt [mailto:rijt () WISH NET]
Sent: Tuesday, February 15, 2000 6:16 PM
To: BUGTRAQ () SECURITYFOCUS COM
Subject: Doubledot bug in FrontPage FrontPage Personal Web Server.
Description: Doubledot bug in FrontPage FrontPage Personal Web Server.
Compromise: Accessing drive trough browser.
Vulnerable Systems: Frontpage-PWS32/188.8.131.526 other versions not tested.
When FrontPage-PWS runs a site on your c:\ drive your drive could be
accessed by any user accessing your page, simply by requesting any file in
any directory except the files in the FrontPage dir. specially /_vti_pvt/.
How to exploit this bug?
Simply adding /..../ in the URL addressbar.