Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

NetServe Web Server v1.0.58 Multiple Remote Vulnerabilities

🗓️ 23 Jun 2011 00:00:00Reported by Gjoko KrsticType 
zeroscience
 zeroscience🔗 www.zeroscience.mk👁 22 Views

NetServe Web Server v1.0.58 Multiple Remote Vulnerabilities including cross-site scripting, remote file inclusion, local file inclusion, script insertion, html injection, denial of service, etc. Vulnerable parameters include Action, EnablePasswords, _Checks, _ValidationError, ListIndex, SiteList_0, SSIErrorMessage, SSIExtensions, SSITimeFormat, SSIabbrevSize, EnableSSI, LogCGIErrors, LoggingInterval, ExtendedLogging, CGITimeOut. Impact: Exposure of System Information, Exposure of Sensitive Information, Manipulation of Data, Cross-Site Scripting.

Code
<html><body><p>NetServe Web Server v1.0.58 Multiple Remote Vulnerabilities


Vendor: Net-X Solutions Ltd
Product web page: http://www.netxsolutions.co.uk
Affected version: 1.0.58

Summary: NetServe is a super compact Web Server and File Sharing
application for Windows NT, 95, 98, 2000, and XP. It's HTTP Web
Server can serve all types of files including html, gif and jpeg,
actually any files placed in your NetServe directory can be served.
New key features include Server-Side-Include (SSI) support and
CGI/1.1 support giving you the choice of your prefered scripting
language,including but not limited to; Perl, ASP and PHP, to create
your dynamic content.

Desc: NetServe Web Server is vulnerable to multiple vulnerabilities
including cross-site scripting, remote file inclusion, local file
inclusion, script insertion, html injection, denial of service, etc.
Given that the software is not maintained anymore and the last update
was in 2006, there are still a few that uses it. All the parameters
are susceptible to the above attacks. The list of the parameters used
by the web application are(post/get):

- Action
- EnablePasswords
- _Checks
- _ValidationError
- ListIndex
- SiteList_0
- SSIErrorMessage
- SSIExtensions
- SSITimeFormat
- SSIabbrevSize
- EnableSSI
- LogCGIErrors
- LoggingInterval
- ExtendedLogging
- CGITimeOut

The tests were made using PowerFuzzer and OWASP ZAP. No need for PoC
strings. Attackers can exploit any of the issues using a web browser.


Tested on: Microsoft Windows XP Pro SP3 (En)

Vulnerability discovered by Gjoko 'LiquidWorm' Krtic
                            liquidworm gmail com


Advisory ID: ZSL-2011-5021
Advisory URL: http://www.zeroscience.mk/en/vulnerabilities/ZSL-2011-5021.php


19.06.2011
</p></body></html>

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
23 Jun 2011 00:00Current
5.7Medium risk
Vulners AI Score5.7
netserve web serverremote vulnerabilitiescross-site scriptingremote file inclusionlocal file inclusionscript insertionhtml injectiondenial of servicevulnerable parameterspowerfuzzerowasp zapnet-x solutions ltdvendorwindows xpvulnerabilitygjoko krsticzero science lab
22