SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Web Server/CGI)  >   Microsoft Personal Web Server Vendors:   Microsoft
Microsoft Personal Web Server Contains An Old Internet Information Server (IIS) Vulnerability Allowing Unauthorized Directory Listings and Possible Code Execution For Remote Users
SecurityTracker Alert ID:  1001116
SecurityTracker URL:  http://securitytracker.com/id/1001116
CVE Reference:   GENERIC-MAP-NOMATCH   (Links to External Site)
Date:  Mar 19 2001
Impact:   Disclosure of system information, Disclosure of user information, Execution of arbitrary code via network
Exploit Included:  Yes  

Description:   It was reported that the default installation of Windows 98 SE with the Microsoft Personal Web Server contains a vulnerability that is the same as a previously discovered vulnerability with Internet Information Server.

The exploit method is reportedly the same: http://PWS-server/scripts/..%c1%9c../windows/notepad.exe

Impact:   A remote user can obtain directory listings outside of the web server's root directory and can potentially execute code on the server.
Solution:   No solution was available at the time of this entry.
Vendor URL:  www.microsoft.com/technet/security/ (Links to External Site)
Cause:   Input validation error
Underlying OS:  Windows (98)

Message History:   This archive entry has one or more follow-up message(s) listed below.
Re: Microsoft Personal Web Server Contains An Old Internet Information Server (IIS) Vulnerability Allowing Unauthorized Directory Listings and Possible Code Execution For Remote Users
The vendor notes that Personal Web Server is not intended to host web sites on the Internet, but rather, is only intended to be used in protected environments such



 Source Message Contents

Subject:  Microsoft - Personal Web Server Extended UNICODE Directory


Hi all...

Just wanted to point out that while testing my Default installation of
Windows 98
running Microsoft Personal Web Server that came with the Windows98 SE CD
I discovered that the famous IIS 4/5 Unicode Directory Traversal
Vulnerability applies also to this Server just as bad as in IIS.

The exploit method is the same :
http://PWS-server/scripts/..%c1%9c../windows/notepad.exe

I wont go in to detail on how to exploit a Windows machine...
(Sorry script kiddies)...

Patches: Dunno.
Quickfixes: Use Linux.

Dinos Pastos - dinopio@linux.com.cy
Security Advisor


 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2021, SecurityGlobal.net LLC