Bajie Webserver Remote Command Execution Vulnerability

Bugtraq ID:	2388
Class:	Input Validation Error
CVE:	CVE-2001-0308
Remote:	Yes
Local:	Yes
Published:	Feb 15 2001 12:00AM
Updated:	Jul 11 2009 04:46AM
Credit:	Discovered by <[email protected]> and posted to Bugtraq on Feb 15, 2001.
Vulnerable:	Bajie Java HTTP Server 0.90 Bajie Java HTTP Server 0.78 a Bajie Java HTTP Server 0.78
Not Vulnerable:	Bajie Java HTTP Server 0.95 d Bajie Java HTTP Server 0.95 Bajie Java HTTP Server 0.94 z Bajie Java HTTP Server 0.94 u4 Bajie Java HTTP Server 0.94 r Bajie Java HTTP Server 0.94 g6 Bajie Java HTTP Server 0.93 Bajie Java HTTP Server 0.92 g Bajie Java HTTP Server 0.92

Bajie Webserver Remote Command Execution Vulnerability

It is possible to execute arbitrary commands on a host running Bajie Webserver.

A remote user can use Bajie's built-in upload feature to place malicious scripts on Bajie webservers. These uploaded scripts are placed in known destination directories and can be automatically executed. Unfortunately Bajie's CGI processor doesn't verify the CGI program exists before executing the script.

Once these files are uploaded, they can be then executed as CGI scripts on the server.

Bajie Webserver Remote Command Execution Vulnerability

Solution:
This issue has been addressed in the latest release of Bajie:


Bajie Java HTTP Server 0.78

• Bajie Java HTTP Server 0.95d
  http://www.utdallas.edu/~gxz014000/websrv/httpsrv.95d.zip

Bajie Java HTTP Server 0.78 a

• Bajie Java HTTP Server 0.95d
  http://www.utdallas.edu/~gxz014000/websrv/httpsrv.95d.zip

Bajie Java HTTP Server 0.90

• Bajie Java HTTP Server 0.95d
  http://www.utdallas.edu/~gxz014000/websrv/httpsrv.95d.zip