exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New

safer.000317.EXP.1.5

safer.000317.EXP.1.5
Posted Apr 20, 2000

S.A.F.E.R. Security Bulletin 000317.EXP.1.5 - Remote user can obtain list of directories on Netscape. Netscape Enterprise Server with 'Web Publishing' enabled can be tricked into displaying the list of directories and subdirectories, if user supplies certain 'tags'.

tags | remote, web
SHA-256 | 28a1f7d9a52e29f7b6c7169a7703161db67a48f4e7b0b0a67e10192242dcf897

safer.000317.EXP.1.5

Change Mirror Download
__________________________________________________________

S.A.F.E.R. Security Bulletin 000317.EXP.1.5
__________________________________________________________


TITLE : Netscape Enterprise Server and '?wp' tags
DATE : March 17, 2000
NATURE : Remote user can obtain list of directories on Netscape
Enterprise Server
AFFECTED : Netscape Enterprise Server 3.x

PROBLEM:

Problem exists in Netscape Enterprise Server that can allow remote user
to obtain list of directories and subdirectories on the server.

DETAILS:

Netscape Enterprise Server with 'Web Publishing' enabled can be tricked
into displaying the list of directories and subdirectories, if user
supplies certain 'tags'. For example:

http://home.netscape.com/?wp-cs-dump

will reveal the contents of the root directory on that web server.
Contents of subdirectories can be obtained as well. Other tags that can
be used are:

?wp-ver-info
?wp-html-rend
?wp-usr-prop
?wp-ver-diff
?wp-verify-link
?wp-start-ver
?wp-stop-ver
?wp-uncheckout

FIXES:

Disable 'Web Publishing'. It is safe to assume that 'Web Publishing' is
not the only feature that will 'activate' this problem. We have found
few servers running Netscape Enterprise Server that did not have 'Web
Publishing' enabled, but were still vulnerable to this problem. Until
Netscape makes an official response and clarify what is the cause of
this problem, it is advised that you test your server against this
vulnerability, and if you are vulnerable, try to disable certain
features and services.

Netscape has been contacted on many occasions, but has failed to
respond.

__________________________________________________________

S.A.F.E.R. - Security Alert For Entreprise Resources
Copyright (c) 2000 The Relay Group
http://safer.siamrelay.com --- security@relaygroup.com
__________________________________________________________
Login or Register to add favorites

File Archive:

July 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    52 Files
  • 2
    Jul 2nd
    0 Files
  • 3
    Jul 3rd
    0 Files
  • 4
    Jul 4th
    11 Files
  • 5
    Jul 5th
    8 Files
  • 6
    Jul 6th
    0 Files
  • 7
    Jul 7th
    0 Files
  • 8
    Jul 8th
    0 Files
  • 9
    Jul 9th
    0 Files
  • 10
    Jul 10th
    0 Files
  • 11
    Jul 11th
    0 Files
  • 12
    Jul 12th
    0 Files
  • 13
    Jul 13th
    0 Files
  • 14
    Jul 14th
    0 Files
  • 15
    Jul 15th
    0 Files
  • 16
    Jul 16th
    0 Files
  • 17
    Jul 17th
    0 Files
  • 18
    Jul 18th
    0 Files
  • 19
    Jul 19th
    0 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close