[NT] Gravity Storm Service Pack Manager 2000 Share Vulnerability

From: support@securiteam.com
Date: 03/23/02 

From: support@securiteam.com
To: list@securiteam.com
Date: Sat, 23 Mar 2002 17:42:26 +0100 (CET)

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
- - promotion

When was the last time you checked your server's security?
How about a monthly report?
http://www.AutomatedScanning.com - Know that you're safe.
- - - - - - - - -

  Gravity Storm Service Pack Manager 2000 Share Vulnerability
------------------------------------------------------------------------

SUMMARY

 <http://www.securitybastion.com/> Service Pack Manager 2000 is a utility
for IT professionals. It allows managing Windows NT/2000 Service Packs and
Hotfixes on the enterprise network in a cost-efficient way. A security
vulnerability occurs due to the fact that the product opens up a share
that is accessible to all, this share provides access to the root
directory of the operating system (C:\).

DETAILS

On a default installation of Service Pack Manager 2000 for Windows NT and
2000 by Gravity Storm Software, the software creates a hidden share called
SPM2000c$. This share is mapped to C:\. In all cases that were found the
critical directories were found to be at the very least readable and at
times (depending on the OS configuration) writeable to everyone remotely.

ADDITIONAL INFORMATION

The information has been provided by <mailto:ken_at_ftu@yahoo.com>
'ken'@FTU.

========================================

This bulletin is sent to members of the SecuriTeam mailing list.
To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@securiteam.com
In order to subscribe to the mailing list, simply forward this email to: list-subscribe@securiteam.com

====================
====================

DISCLAIMER:
The information in this bulletin is provided "AS IS" without warranty of any kind.
In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.

Relevant Pages

  • !KB904706 conflicting info on MS websites..
    ... This advisory contains information about all security updates released this month. ... It is broken down by security bulletin severity. ... Windows 2000 Service Pack 4 ... Windows Server 2003 Service Pack 1 ...
    (microsoft.public.windowsupdate)
  • [NT] Security Enhancements in Windows XP Service Pack 2
    ... Get your security news from a reliable source. ... Microsoft plans to publish a second service pack for Microsoft Windows XP ... convenient control panel graphical user interface to enable exceptions by ...
    (Securiteam)
  • Re: Office 2003 Service Pack 3--subsequent problems opening Publis
    ... According to the description there is no known issues with the security patch. ... Vulnerability in Microsoft Publisher could allow remote code execution ... Mary Sauer MSFT MVP ... I then installed Service Pack 3 and no other updates. ...
    (microsoft.public.publisher)
  • [NT] Vulnerability in Microsoft Internet Information Services Allows Code Execution (MS07-041)
    ... Get your security news from a reliable source. ... Vulnerability in Microsoft Internet Information Services Allows Code ... Internet Information Services 5.1 on Windows XP Professional Service ... Professional Service Pack 2. ...
    (Securiteam)
  • [NT] Bea WebLogic Incorrect URL Parsing Issues
    ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... request would exhaust the working threads and cause the web service to ... "BEA WebLogic Server and Express version 6.1 standalone or as part of BEA ... WebLogic Enterprise 6.1 on all OS platforms Action: Apply Service Pack 2 ...
    (Securiteam)