new bugs in MyWebServer

Type securityvulns
Reporter Securityvulns
Modified 2002-08-16T00:00:00


Hi. Bugs founded in MyWebServer v.1.0.2. You can download it from 1. Buffer overflow in MWS Search Engine. Remote attacker can crash web-server (and run shell-code) by sending keyword with a large size. Xsploit: http://vuln_host/MWS/HandleSearch.html?searchTarget=[990b_of_any_data]&B1=Submit Fix: Turn off "Search Page" in MWS properties ( 2. Remote JS/VB/HTML code execution. Xsploit: http://vuln_host/[223b_of_any_data]<font%20size=50>DEFACED<!--//-- 3. Real patch attack. Xsploit: http://vuln_host/[not_exists_dir] Then in the document source we can find patch from \ to wwwroot.

Advisoryed by D4rkGr3y ( Full information about all bugs (6) in MWS u can find here: Only for Russian users.

P.S. Remote DoS\root exploit for MWS attached.