Niti Telecom Caravan Business Server Remote Directory Traversal Vulnerability
BID:9555
Info
Niti Telecom Caravan Business Server Remote Directory Traversal Vulnerability
| Bugtraq ID: | 9555 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 02 2004 12:00AM |
| Updated: | Feb 02 2004 12:00AM |
| Credit: | Discovery of this issue has been credited to DR_insane <[email protected]>. |
| Vulnerable: |
Niti Telecom Caravan Business Server 2.00-03D |
| Not Vulnerable: |
Niti Telecom Caravan Business Server 3.0.7 |
Discussion
Niti Telecom Caravan Business Server Remote Directory Traversal Vulnerability
The showcode.asp script activated in Sample_showcode.html may be vulnerable to a directory traversal issue. A remote attacker may view any files readable by the web server using '../' escape sequences in URI requests.
The showcode.asp script activated in Sample_showcode.html may be vulnerable to a directory traversal issue. A remote attacker may view any files readable by the web server using '../' escape sequences in URI requests.
Exploit / POC
Niti Telecom Caravan Business Server Remote Directory Traversal Vulnerability
There is no exploit required to leverage this issue. The following proof of concept has been provided:
http://www.example.org/sample_script_directory/Sample_showcode.html?fname=/../../../../target
There is no exploit required to leverage this issue. The following proof of concept has been provided:
http://www.example.org/sample_script_directory/Sample_showcode.html?fname=/../../../../target
Solution / Fix
Niti Telecom Caravan Business Server Remote Directory Traversal Vulnerability
Solution:
To assure that this issue is not exploitable, sample scripts should be removed before putting the web server into production.
Niti Telecom has released an upgrade to address this issue. Please see the referece section in order to contact the vendor for information on obtaining the upgrade.
Solution:
To assure that this issue is not exploitable, sample scripts should be removed before putting the web server into production.
Niti Telecom has released an upgrade to address this issue. Please see the referece section in order to contact the vendor for information on obtaining the upgrade.