Suspicion Breeds Confidence

Data Default Passwords Default Port List Scurn Security Search Code Nikto Web Scanner Nessus Plugins SETI-Web More... Advisories Alkalay.net Multi Scripts Cyclades Console Connect Cyclades Info Disclosure Cyclades Priv Escalation MySQL Eventum Backdoor MySQL Eventum XSS EW FileManager Retrieval cPanel File Retrieval More... Misc Latest News Press Links/Amigos Donate Nikto Loot!

CIRT-200504: Avi Alkalay Multiple Scripts / Multiple Issues Arbitrary Command Execution / Arbitrary File Retrieval - 09/20/2005 Product: Alkalay.net Scripts Description: Multiple perl scripts from alkalay.net contain remote command execution or arbitrary file retrieval vulnerabilities. Software Affected: man-cgi (Command Execution) notify (Command Execution) nslookup.cgi (Command Execution) contribute.cgi/contribute.pl (File Retrieval) Technical Description: Various perl scripts on alkalay.net act on unsafe data from the client, which can allow command execution on the web server or retrieval of arbitrary files from the web server (both as the web server user). Note that these programs do not appear to have been maintained for some time, and the author did not respond to contact attempts. These vulns were found while doing research for OSVDB-19515, OSVDB-19516 and OSVDB-19517 (man2web command execution). Fix/Workaround: None at this time. Vendor Status: Avi Alkalay was notified on 09/12/2005 but did not respond. Contacts: sullo@cirt.net References: Updated information can be found on OSVDB.org under the following entries: OSVDB-19519 Avi Alkalay man-cgi topic Variable Arbitrary Command Execution OSVDB-19520 Avi Alkalay nslookup.cgi query Variable Arbitrary Command Execution OSVDB-19521 Avi Alkalay notifiy from Variable Arbitrary Command Execution OSVDB-19522 Avi Alkalay contribute.cgi/contribute.pl template Variable Arbitrary File Retrieval

Web cirt.net

Privacy Policy | Terms of Use | Contact | About     © 2001-2005 CIRT.net