Network Query Tool nqt.php Path Disclosure

2004-04-23T09:05:26
ID OSVDB:5671
Type osvdb
Reporter Janek Vind "waraxe"(come2waraxe@yahoo.com)
Modified 2004-04-23T09:05:26

Description

Vulnerability Description

Network Query Tool contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an attacker requests the nqt.php script with an invalid "portNum" argument, which will disclose the physical path of the script installation resulting in a loss of confidentiality.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

Network Query Tool contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an attacker requests the nqt.php script with an invalid "portNum" argument, which will disclose the physical path of the script installation resulting in a loss of confidentiality.

Manual Testing Notes

http://[victim]/nqt.php?target=foobar.com&queryType=all&portNum=foobar

References:

Vendor URL: http://www.shat.net/php/nqt/ Secunia Advisory ID:11479 Related OSVDB ID: 5672 Other Advisory URL: http://www.zone.ee/waraxe/?modname=sa&id=024 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2004-04/0285.html Bugtraq ID: 10205