<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Bugtraq: Webtrends HTTP Server %20 bug

Webtrends HTTP Server %20 bug

From: Auriemma Luigi <kaino3_at_genie.it>
Date: Sun, 3 Jun 2001 12:41:51 +0200 (ora legale Europa occidentale)

*** I'm sorry if this bug is already known, but I have not found it in the
SecurityFocus and other archives.

Author: Auriemma Luigi

VERSION TESTED: Webtrends HTTP Server V3.1c (Webtrends Reporting Server)

RISK: Viewing the source of the cgi scripts

The bug is really simple. If the attacker insert an unicode space (%20)
after the script file, the server think that the file requested is not a
cgi script and for this it shown the source; this is an example:

http://host/remote_login.pl%20

And the result is the source of "remote_login.pl".

I have not contacted Webtrends because I wait for more opinions, and for
result with other versions.

Thanks for your attention.
Received on Jun 04 2001

This message: [ Message body ]
Next message: Roman Drahtmueller: "SuSE Security Announcement: gpg/GnuPG (SuSE-SA:2001:020)"
Previous message: Sym Security: "Re: Nortan Antivirus 2000 Poproxy.exe problem"
Next in thread: Michael Grice: "Re: Webtrends HTTP Server %20 bug"
Reply: Michael Grice: "Re: Webtrends HTTP Server %20 bug"
Reply: H D Moore: "Re: Webtrends HTTP Server %20 bug"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]

edgeos