Allaire JRun 2.3.x Sample Files Vulnerability
BID:1386
Info
Allaire JRun 2.3.x Sample Files Vulnerability
| Bugtraq ID: | 1386 |
| Class: | Access Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | Yes |
| Published: | Jun 22 2000 12:00AM |
| Updated: | Jun 22 2000 12:00AM |
| Credit: | Publicized in an Allaire Security Bulletin (ASB00-15) on June 22, 2000. |
| Vulnerable: |
Macromedia JRun 2.3 .x |
| Not Vulnerable: | |
Discussion
Allaire JRun 2.3.x Sample Files Vulnerability
A number of vulnerabilities exist in Allaire JRun 2.3.x when the documentation, sample code, examples, and applications as well as tutorials are present on the host server. These are shipped with JRun and should be manually removed in order to circumvent the vulnerabilities.
Remote users may take advantage of these sample files in order to view sensitive information such as the filesystem and system configuration or execute various functions on the server.
Eg.
1) Accessing http://target/servlet/SessionServlet will display all of the current HttpSession ids that are maintained by the server.
2) The viewsource.jsp path checking is disabled by default. This makes it is possible for a remote user to view any file on the server.
A number of vulnerabilities exist in Allaire JRun 2.3.x when the documentation, sample code, examples, and applications as well as tutorials are present on the host server. These are shipped with JRun and should be manually removed in order to circumvent the vulnerabilities.
Remote users may take advantage of these sample files in order to view sensitive information such as the filesystem and system configuration or execute various functions on the server.
Eg.
1) Accessing http://target/servlet/SessionServlet will display all of the current HttpSession ids that are maintained by the server.
2) The viewsource.jsp path checking is disabled by default. This makes it is possible for a remote user to view any file on the server.