English | Deutsch | Español | Português
 UserID:
 Passwd:
 new user
 About:   Dedicated  | Advanced  | Standard  | Recurring  | No Risk  | Desktop  | Basic  | Single  | Security Seal  | FAQ
  Price/Feature Summary  | Order  | New Vulnerabilities  | Confidentiality  | Vulnerability Search
 Vulnerability   
Search   		     Search 42328 CVE descriptions
and 23219 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:10784
Category:CGI abuses
Title:ht://Dig's htsearch potential exposure/dos
Summary:htsearch?-c/nonexistent
Description:
The remote CGI htsearch allows the user to supply his own
configuration file using the '-c' switch, as in :

/cgi-bin/htsearch?-c/some/config/file

This file is not displayed by htsearch. However, if an
attacker manages to upload a configuration file to the remote
server, it may make htsearch read arbitrary files on the remote host.

An attacker may also use this flaw to exhaust the resources on the
remote host by specifying /dev/zero as a configuration file.

Solution: Upgrade to ht://Dig 3.1.6 or newer
(http://www.htdig.org/files/snapshots/)

Risk factor : High
Cross-Ref: BugTraq ID: 3410
Common Vulnerability Exposure (CVE) ID: CVE-2001-0834
http://sourceforge.net/tracker/index.php?func=detail&aid=458013&group_id=4593&atid=104593
Bugtraq: 20011007 Re: Bug found in ht://Dig htsearch CGI (Google Search)
http://marc.theaimsgroup.com/?l=bugtraq&m=100260195401753&w=2
Conectiva Linux advisory: CLA-2001:429
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000429
SuSE Security Announcement: SuSE-SA:2001:035 (Google Search)
http://www.novell.com/linux/security/advisories/2001_035_htdig_txt.html
Debian Security Information: DSA-080 (Google Search)
http://www.debian.org/security/2001/dsa-080
http://www.redhat.com/support/errata/RHSA-2001-139.html
Caldera Security Advisory: CSSA-2001-035.0
http://www.calderasystems.com/support/security/advisories/CSSA-2001-035.0.txt
http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-083.php3
http://www.securityfocus.com/bid/3410
XForce ISS Database: htdig-htsearch-infinite-loop(7262)
http://xforce.iss.net/static/7262.php
XForce ISS Database: htdig-htsearch-retrieve-files(7263)
http://xforce.iss.net/static/7263.php
CopyrightCopyright (C) 2001 Renaud Deraison

This is only one of 23219 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

New User Registration
Email:
UserID:
Passwd:
Please email me your monthly newsletters, informing the latest services, improvements & surveys.
Please email me a vulnerability test announcement whenever a new test is added.
   Privacy
Registered User Login
 
UserID:   
Passwd:  
 Forgot userid or passwd?
Email/Userid:



Home | About Us | Contact Us | Partner Programs | Privacy | Mailing Lists | Abuse
Security Audits | Managed DNS | Network Monitoring | Site Analyzer | Internet Research Reports
Web Probe | Whois

© 1998-2010 E-Soft Inc. All rights reserved.