TUCoPS :: Windows Apps :: win5878.htm

iASP Remote Console Applet Allows Remote File Retrieval
16th Dec 2002 [SBWID-5878]
COMMAND

	iASP Remote Console Applet Allows Remote File Retrieval

SYSTEMS AFFECTED

	iASP <= (v1.0.9) (Latest: Unknown)

PROBLEM

	In Alan "ph33r"  Neville  [ph33r@fatelabs.com]  of  Fate  Research  Labs
	[http://www.fatelabs.com] advisory :
	
	The Remote Console Applet Running on  Port  9095  that  ships  with  the
	Instant ASP software suite contains  an  access  validation  error  that
	allows an attacker to retrieve any  file  on  the  remote  system.  This
	includes sensitive configuration files for Instant ASP as  well  as  any
	other file on the remote host. (SAM, PASSWD, SHADOW, et. al)
	
	
	 Exploit 
	 -------
	
	Simply point a web browser at
	
	 http://<hostname>:9095/../../../../../../etc/passwd
	
	

SOLUTION

	Halcyon Software was contacted regarding this  problem  on  the  8th  of
	December 2002. There is no patch for this problem at present.

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH