Hummingbird Collaboration Application Cookie Internal Network Information Disclosure

2006-01-10T00:00:00
ID EDB-ID:27062
Type exploitdb
Reporter Luca Carettoni
Modified 2006-01-10T00:00:00

Description

Hummingbird Collaboration Application Cookie Internal Network Information Disclosure. CVE-2006-0174. Webapps exploit for cgi platform

                                        
                                            source: http://www.securityfocus.com/bid/16195/info
 
Hummingbird Enterprise Collaboration is prone to multiple vulnerabilities.
 
The following specific issues were identified:
 
The application reportedly allows remote attackers to upload arbitrary HTML files and script code to the application.
 
Another vulnerability allows attackers to trick users into downloading potentially malicious files.
 
An attacker may also disclose sensitive information about the server by sending specially crafted HTTP GET requests.
 
Hummingbird Enterprise Collaboration 5.2.1 and prior versions are vulnerable to these issues.

To disclose the internal IP address:

https://www.example.com/hc/hc?d=mes&x=20433&ntb=[numericParam]

Where the ntb parameter is supplied a numeric value instead of a string value. The internal IP address of the server may be found in a cookie.