HP Web Jetadmin cache.ini Arbitrary File Write

2004-04-27T00:00:00
ID OSVDB:5797
Type osvdb
Reporter FX(fx@phenoelit.de)
Modified 2004-04-27T00:00:00

Description

Vulnerability Description

HP JetAdmin contains a flaw that may allow a remote attacker to arbitrary write data to the cache.ini file. The issue is triggered when sending a specially crafted POST reguest using the __BrowserID variable, which may allow a remote attacker to arbitrary create cache entries in the cache.ini file resulting in a loss of integrity.

Solution Description

Upgrade to version 7.5 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

HP JetAdmin contains a flaw that may allow a remote attacker to arbitrary write data to the cache.ini file. The issue is triggered when sending a specially crafted POST reguest using the __BrowserID variable, which may allow a remote attacker to arbitrary create cache entries in the cache.ini file resulting in a loss of integrity.

References:

Vendor URL: http://www.hp.com/ Vendor Specific Advisory URL Security Tracker: 1009960 Secunia Advisory ID:11536 Related OSVDB ID: 5793 Related OSVDB ID: 5798 Related OSVDB ID: 5792 Related OSVDB ID: 5794 Related OSVDB ID: 5796 Related OSVDB ID: 5790 Related OSVDB ID: 5791 Related OSVDB ID: 5795 Other Advisory URL: http://www.phenoelit.de/stuff/HP_Web_Jetadmin_advisory.txt Keyword: HPSBPI01026 Keyword: SSRT2397 ISS X-Force ID: 15988 CERT VU: 606673 Bugtraq ID: 10224