Eserv 2.97 Password Protected File Arbitrary Read Access Vulnerability

• Previous message: Tamer Sahin: "Savant Webserver Buffer Overflow Vulnerability"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date:         Thu, 10 Jan 2002 01:30:17 +0200
From: Tamer Sahin <tamer@ONAR.COM.TR>
To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Eserv 2.97 Password Protected File Arbitrary Read Access
Vulnerability

Type:
File Disclosure

Release Date:
January 10, 2002

Product / Vendor:
Eserv Mail, News, Web, FTP and Proxy Servers for Win95/98/NT/2000

http://www.eserv.ru

Summary:
The vulnerability allows you to view any password protected files and
folders on the webserver.

http://host/./passwordprotected/

Example:
All services control panel.

http://host/./admin/

Tested:
Windows 2000 / Eserv 2.97

Vulnerable:
Eserv 2.97 (And may be other.)

Disclaimer:
http://www.securityoffice.net is not responsible for the misuse or
illegal use of any of the information and/or the software listed on
this security advisory.

Author:
Tamer Sahin
ts@securityoffice.net
http://www.securityoffice.net

Tamer Sahin
http://www.securityoffice.net
PGP Key ID: 0x2B5EDCB0 Fingerprint:
B96A 5DFC E0D9 D615 8D28 7A1B BB8B A453 2B5E DCB0

-----BEGIN PGP SIGNATURE-----
Version: PGP 7.1

iQA/AwUBPDzSh7uLpFMrXtywEQI9CACgkHqmcu1Nxiyq+77F5k16WsWDTpkAoKJY
CPwgOO/ByYj2i7oNdx/ydY2r
=A63H
-----END PGP SIGNATURE-----

============================================================================
Delivery co-sponsored by VeriSign - The Internet Trust Company
============================================================================
FREE E-COMMERCE SECURITY INFRASTRUCTURE GUIDE
When building an e-commerce site, you want to start with a strong, secure
foundation. Learn how with VeriSign's FREE White Paper, "Building an
E-Commerce Trust Infrastructure." See how you can authenticate your site to
customers, use 128-Bit SSL encryption to secure your web servers, and accept
secure payments online. Click here:
http://www.verisign.com/cgi-bin/go.cgi?a=n116965650045000
============================================================================

• Previous message: Tamer Sahin: "Savant Webserver Buffer Overflow Vulnerability"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Eserv 2.97 Password Protected File Arbitrary Read Access Vulnerability (Solution) ... Add "./" string to the AccessRights in Eserv with zero rights. ... FREE E-COMMERCE SECURITY INFRASTRUCTURE GUIDE ... When building an e-commerce site, you want to start with a strong, secure ... (NT-Bugtraq) Eserv 2.97 Password Protected File Arbitrary Read Access Vulnerability ... Eserv 2.97 Password Protected File Arbitrary Read Access ... The vulnerability allows you to view any password protected files and ... PGP Key ID: 0x2B5EDCB0 Fingerprint: ... (Bugtraq)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint