[NEWS] Novell GroupWise Servlet Gateway Default Username and Password
From: support@securiteam.comDate: 12/21/01
- Previous message: support@securiteam.com: "[UNIX] Aktivate Shopping System Cross-Site Scripting Vulnerability"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: support@securiteam.com To: list@securiteam.com Date: Fri, 21 Dec 2001 00:35:41 +0100 (CET)
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
- - promotion
When was the last time you checked your server's security?
How about a monthly report?
http://www.AutomatedScanning.com - Know that you're safe.
- - - - - - - - -
Novell GroupWise Servlet Gateway Default Username and Password
------------------------------------------------------------------------
SUMMARY
Novell GroupWise is installed with a default username and password that
controls the servlet manager. The servlet manager allows the configuration
of the servlets to be loaded, reloaded, or unloaded. This is more of an
annoyance than an exploit. The ability to control and unload servlets
allows an attacker to deny web-based services to users. This will prevent
users from accessing mail or other servlet based resources.
DETAILS
Vulnerable systems:
GroupWise 5.5 Enhancement Pack
GroupWise 6.0
Exploit:
http://server/servlet/ServletManager
username servlet
password manager
Solution:
Change the password:
Edit the SYS:\JAVA\SERVLETS\SERVLET.PROPERTIES file.
There is a section for ServletManager like the following:
# ServletManager servlet
servlet.ServletManager.code=com.novell.application.ServletGateway.ServletManager
servlet.ServletManager.initArgs=datamethod=POST,user=servlet,password=manager,bgcolor
#c0c0c0
servlet.ServletManager.preload=true
ADDITIONAL INFORMATION
The information has been provided by <mailto:AGray@novacoast.com> Adam
Gray.
========================================
This bulletin is sent to members of the SecuriTeam mailing list.
To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@securiteam.com
In order to subscribe to the mailing list, simply forward this email to: list-subscribe@securiteam.com
====================
====================
DISCLAIMER:
The information in this bulletin is provided "AS IS" without warranty of any kind.
In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.
- Previous message: support@securiteam.com: "[UNIX] Aktivate Shopping System Cross-Site Scripting Vulnerability"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
