GoAhead WebServer Arbitrary File Retrieval

2002-07-10T00:00:00
ID OSVDB:6663
Type osvdb
Reporter Matt Moore(matt@westpoint.ltd.uk)
Modified 2002-07-10T00:00:00

Description

Vulnerability Description

GoAhead WebServer contains a flaw that allows a remote attacker to arbitrary access files outside of the web path. The issue is due to the application not properly sanitizing user input, specifically traversal style attacks (../../) resulting in a loss of confidentiality.

Solution Description

Upgrade to version 2.1.8 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

GoAhead WebServer contains a flaw that allows a remote attacker to arbitrary access files outside of the web path. The issue is due to the application not properly sanitizing user input, specifically traversal style attacks (../../) resulting in a loss of confidentiality.

Manual Testing Notes

http://[victim]/..%5C..%5C..%5C..%5C..%5C..%5C/winnt/win.ini

References:

Vendor URL: http://216.211.138.77/webserver/webserver.htm Related OSVDB ID: 6662 Mail List Post: http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0013.html ISS X-Force ID: 9519 CVE-2002-0681 Bugtraq ID: 5197