pWins Perl Web Server Directory Transversal Vulnerability

Type securityvulns
Reporter Securityvulns
Modified 2002-11-28T00:00:00


>From "pWins is a webserver-software based on perl and ruby (not yet) code. My aim is to make it fast, small and secure, supporting cgi (perl, ruby) and php scripts. It's easy to install and configurate!"

versions: 0.2.5 and earlier, tested on Windows only..

description: pWins allows directory transversal via unicode characters (%255, you know, nimda stuff).. If it's installed on the c drive, you can get to any file (ahem.. sam.) easily.. for example, http://SomeWebServer/../../windows/repair/sam.

no exploit provided because too trivial..

fix: author has posted a patch in the Bugs section on, but I've found that it breaks script processing because he forgot to escape the special characters (%)in his regular expressions.. line 247 of (i think) search for url_check

or wait for version 0.2.8 due to be out soon..

Matt Wagenknecht Security Administrator

The new MSN 8: smart spam protection and 2 months FREE*