Lucene search
Debian: Security Advisory (DSA-392)
🗓️ 17 Jan 2008 00:00:00Reported by Copyright (C) 2008 Greenbone AGType 
openvas🔗 plugins.openvas.org👁 11 Views
The remote host is missing an update for the Debian 'webfs' package(s) announced via the DSA-392 advisory. Jens Steube reported two vulnerabilities in webfs, a lightweight HTTP server for static content. Virtual hosting is enabled, allowing retrieval of directory listings or files above the document root. A long pathname could overflow a buffer allocated on the stack, allowing execution of arbitrary code
Show more
| Reporter | Title | Published | Views | Family All 22 |
|---|---|---|---|---|
 | Debian DSA-392-1 : webfs - buffer overflows, file and directory exposure | 29 Sep 200400:00 | – | nessus |
| Web Server Long URL Handling Remote Overflow DoS | 22 Jun 199900:00 | – | nessus |
 | [SECURITY] [DSA-392-1] New webfs packages fix buffer overflows, file and directory exposure | 30 Sep 200300:00 | – | securityvulns |
 | DSA-392 webfs - buffer overflows, file and directory exposure | 29 Sep 200300:00 | – | osv |
| CVE-2003-0832 | 17 Nov 200305:00 | – | osv |
| CVE-2003-0833 | 17 Nov 200305:00 | – | osv |
| Debian Security Advisory DSA 392-1 (webfs) | 17 Jan 200800:00 | – | openvas |
| www too long url | 23 Jun 200900:00 | – | openvas |
| WWW Too Long URL DoS Vulnerability | 23 Jun 200900:00 | – | openvas |
 | [SECURITY] [DSA-392-1] New webfs packages fix buffer overflows, file and directory exposure | 29 Sep 200315:55 | – | debian |
10
| Source | Link |
|---|---|
| security-tracker | www.security-tracker.debian.org/tracker/DSA-392 |
| debian | www.debian.org/security/2003/DSA-392 |
# SPDX-FileCopyrightText: 2008 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.53676");
script_cve_id("CVE-2003-0832", "CVE-2003-0833");
script_tag(name:"creation_date", value:"2008-01-17 21:36:24 +0000 (Thu, 17 Jan 2008)");
script_version("2024-02-01T14:37:10+0000");
script_tag(name:"last_modification", value:"2024-02-01 14:37:10 +0000 (Thu, 01 Feb 2024)");
script_tag(name:"cvss_base", value:"7.5");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_name("Debian: Security Advisory (DSA-392)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2008 Greenbone AG");
script_family("Debian Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/debian_linux", "ssh/login/packages", re:"ssh/login/release=DEB3\.0");
script_xref(name:"Advisory-ID", value:"DSA-392");
script_xref(name:"URL", value:"https://www.debian.org/security/2003/DSA-392");
script_xref(name:"URL", value:"https://security-tracker.debian.org/tracker/DSA-392");
script_tag(name:"summary", value:"The remote host is missing an update for the Debian 'webfs' package(s) announced via the DSA-392 advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"Jens Steube reported two vulnerabilities in webfs, a lightweight HTTP server for static content.
CAN-2003-0832 - When virtual hosting is enabled, a remote client could specify '..' as the hostname in a request, allowing retrieval of directory listings or files above the document root.
CAN-2003-0833 - A long pathname could overflow a buffer allocated on the stack, allowing execution of arbitrary code. In order to exploit this vulnerability, it would be necessary to be able to create directories on the server in a location which could be accessed by the web server. In conjunction with CAN-2003-0832, this could be a world-writable directory such as /var/tmp.
For the current stable distribution (woody) these problems have been fixed in version 1.17.2.
For the unstable distribution (sid) these problems have been fixed in version 1.20.
We recommend that you update your webfs package.");
script_tag(name:"affected", value:"'webfs' package(s) on Debian 3.0.");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-deb.inc");
release = dpkg_get_ssh_release();
if(!release)
exit(0);
res = "";
report = "";
if(release == "DEB3.0") {
if(!isnull(res = isdpkgvuln(pkg:"webfs", ver:"1.17.2", rls:"DEB3.0"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
exit(0);
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo17 Jan 2008 00:00Current
6.8Medium risk
Vulners AI Score6.8
CVSS27.5
EPSS0.05025