Test Kennung:	1.3.6.1.4.1.25623.1.0.12050
Kategorie:	Web Servers
Titel:	Novell Netbasic Scripting Server Directory Traversal
Zusammenfassung:	Novell Netbasic Scripting Server is prone to a directory traversal vulnerability.
Beschreibung:	Summary: Novell Netbasic Scripting Server is prone to a directory traversal vulnerability. Vulnerability Insight: It is possible to escape out of the root directory of the scripting server by substituting a forward or backward slash for %5C. As a result, system information, such as environment and user information, could be obtained from the Netware server. Example: http://example.com/nsn/..%5Cutil/userlist.bas Solution: Apply the relevant patch and remove all default files from their respective directories. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2002-1417 BugTraq ID: 5523 http://www.securityfocus.com/bid/5523 Bugtraq: 20020820 NOVL-2002-2963297 - NetBasic Buffer Overflow + Scripting Vulnerability (Google Search) http://archives.neohapsis.com/archives/bugtraq/2002-08/0199.html http://www.iss.net/security_center/static/9910.php
Copyright	Copyright (C) 2004 David Kyger

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.