602lan Suite Local File Detection And Dos

Full Version: 602lan Suite Local File Detection And Dos

GovernmentSecurity.org > General GSO > Exploit & Vulnerability Mailing List Archives

qcred11

May 4 2005, 10:58 AM

QUOTE

TITLE:
602LAN SUITE Local File Detection and Denial of Service
VERIFY ADVISORY:
http://secunia.com/advisories/15231/
CRITICAL:
Less critical
IMPACT:
Exposure of system information, DoS
WHERE:
>From remote
SOFTWARE:
602LAN SUITE 2004

DESCRIPTION:
Dr_insane has discovered a vulnerability in 602LAN SUITE, which can
be exploited by malicious people to detect the presence of local
files and cause a DoS (Denial of Service).

The problem is that no redirection occurs when accessing the "mail"
script with the "A" parameter referencing a valid local file via
directory traversal attacks.

Example:
http://[host]/mail?A=/../../../../../../../[file]

This can further be exploited to cause a vulnerable server to create
a large amount of processes consuming memory by sending multiple
requests (several thousand).

The vulnerability has been confirmed in version 2004.0.05.0413. Other
versions may also be affected.

SOLUTION:
Filter malicious characters and character sequences in a proxy or
firewall with URL filtering capabilities.

PROVIDED AND/OR DISCOVERED BY:
Dr_insane

This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.