NAI PGP Keyserver console.exe Authentication Bypass

2001-09-21T00:00:00
ID OSVDB:1955
Type osvdb
Reporter Nobuo Miwa(n-miwa@lac.co.jp)
Modified 2001-09-21T00:00:00

Description

Vulnerability Description

PGP Keyserver contains a flaw that allows a remote user to access administrative features without authentication. The flaw is due to the server not validating input to the "page_size" variable in the "console.exe" script. This may allow an attacker to manipulate administrative features and configuration options.

Solution Description

Currently, there are no known upgrades or patches to correct this issue. It is possible to correct the flaw by implementing the following workaround: Use access controls to prevent access to these scripts.

Short Description

PGP Keyserver contains a flaw that allows a remote user to access administrative features without authentication. The flaw is due to the server not validating input to the "page_size" variable in the "console.exe" script. This may allow an attacker to manipulate administrative features and configuration options.

Manual Testing Notes

https://server.name/cgi-bin/console.exe?page_size=...

References:

Related OSVDB ID: 4193 Other Advisory URL: http://www.lac.co.jp/security/english/snsadv_e/43_e.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2001-09/0230.html ISS X-Force ID: 7203 CVE-2001-1252 Bugtraq ID: 3375