|
Easy File Sharing Web Server Cross Site Scripting and Directory Traversal
|
|
Secunia Advisory:
|
SA9736
|
|
|
Release Date:
|
2003-09-16
|
|
Popularity:
|
7,354 views
|
|
|
Critical:
|
Moderately critical
|
|
Impact:
|
Cross Site Scripting
Exposure of sensitive information
|
|
Where:
|
From remote
|
|
Solution Status:
|
Unpatched
|
|
| Software: | Easy File Sharing Web Server 1.x
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities 
|
|
Description:
Two vulnerabilities have been reported in Easy File Sharing Web Server allowing malicious people to see any file and conduct Cross Site Scripting attacks.
One problem is that the web server doesn't verify requests. This allows malicious people to conduct directory traversal using "../" sequences making it possible to escape the web root.
Example:
http://[victim]/../../
The other problem is that it is possible to include arbitrary HTML and JavaScript in messages in the forum. This can be exploited to conduct permanent Cross Site Scripting.
The vulnerabilities have been confirmed in version 1.2.
Solution:
Restrict access using a firewall so that only trusted IP addresses can access the service or use a different product.
Provided and/or discovered by:
dr_insane
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
