[NT] WinWrapper Professional Remote File Disclosure Vulnerability
From: support@securiteam.comDate: 08/26/01
- Previous message: support@securiteam.com: "[NEWS] Hotmail LINK CSS Vulnerability (New Strain)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: support@securiteam.com To: list@securiteam.com Subject: [NT] WinWrapper Professional Remote File Disclosure Vulnerability Message-Id: <20010826062503.E270A138BF@mail.der-keiler.de> Date: Sun, 26 Aug 2001 08:25:03 +0200 (CEST)
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
- - promotion
When was the last time you checked your server's security?
How about a monthly report?
http://www.AutomatedScanning.com - Know that you're safe.
- - - - - - - - -
WinWrapper Professional Remote File Disclosure Vulnerability
------------------------------------------------------------------------
SUMMARY
<http://www.ant.co.jp/Products/Wrapperpro2.htm> WinWrapper Professional
is a firewall software. It provides Web-based remote console, which
suffers from a vulnerability allowing remote attackers to read arbitrary
files on the system.
DETAILS
Vulnerable systems:
WinWrapper Professional version 2.0
Immune systems:
WinWrapper Professional version 2.0.1
WinWrapper Professional is a firewall software that is developed by ASCII
NT, INC. It is designed to protect WindowsNT/2000 systems, and provides
additional Web-based capability of remote administration. Nevertheless,
the program that is used as remote administration server contains a
vulnerability that makes it possible to read arbitrary files on the target
system with Local System context.
Example:
Note:
Patch information:
ADDITIONAL INFORMATION
The information has been provided by <mailto:y.arai@lac.co.jp> ARAI Yuu
========================================
This bulletin is sent to members of the SecuriTeam mailing list.
====================
DISCLAIMER:
http://
The port number 4096 (TCP) is the default port number used by the product.
A fixed module (Ver.2.0.1) is available from the following URL:
<http://www.tsc.ant.co.jp/products/download.htm>
http://www.tsc.ant.co.jp/products/download.htm
(LAC).
To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@securiteam.com
In order to subscribe to the mailing list, simply forward this email to: list-subscribe@securiteam.com
====================
The information in this bulletin is provided "AS IS" without warranty of any kind.
In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.
Relevant Pages
... Introducing the world's first and only complete Internal Security Gateway: ... Microsoft Windows XP Explorer.EXE Remote Denial of Service V... ... Apache Error Log Escape Sequence Injection Vulnerability ...
(Focus-Microsoft)
... MICROSOFT VULNERABILITY SUMMARY ... Advanced Poll Remote Information Disclosure Vulnerability ... PHPNuke News Module Article.PHP SQL Injection Vulnerability ...
(Focus-Microsoft)
... Better Management for Network Security ... GoodTech Telnet Server Remote Denial Of Service Vulnerabilit... ... ASPApp PortalAPP Remote User Database Access Vulnerability ...
(Focus-Microsoft)
... MICROSOFT VULNERABILITY SUMMARY ... JPortal Banner.PHP SQL Injection Vulnerability ... Microsoft Windows Kernel Object Management Denial Of Service... ... Microsoft Windows Message Queuing Remote Buffer Overflow Vul... ...
(Focus-Microsoft)
... MICROSOFT VULNERABILITY SUMMARY ... Microsoft Windows Kernel Local Denial of Service Vulnerabili... ... OCPortal Content Management System Remote File Include Vulne... ...
(Focus-Microsoft)
