SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


Try our Premium Alert Service
 
Sign Up
Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
Instant Alerts
Buy our Premium Vulnerability Notification Service to receive customized, instant alerts
Affiliates
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
Partners
Become a Partner and License Our Database or Notification Service





Category:   Application (Web Server/CGI)  >   Microsoft Personal Web Server Vendors:   Microsoft
Re: Microsoft Personal Web Server Contains An Old Internet Information Server (IIS) Vulnerability Allowing Unauthorized Directory Listings and Possible Code Execution For Remote Users
SecurityTracker Alert ID:  1001129
SecurityTracker URL:  http://securitytracker.com/id/1001129
CVE Reference:   GENERIC-MAP-NOMATCH   (Links to External Site)
Date:  Mar 20 2001
Impact:   Disclosure of system information, Disclosure of user information, Execution of arbitrary code via network


Description:   It was reported that the default installation of Windows 98 SE with the Microsoft Personal Web Server contains a vulnerability that is the same as a previously discovered vulnerability with Internet Information Server.

The vendor notes that Personal Web Server is not intended to host web sites on the Internet, but rather, is only intended to be used in protected environments such
as home networks. The vendor recommends that users that require hosting an Internet site use the vendor's Internet Information Server (IIS) product.

Impact:   A remote user can obtain directory listings outside of the web server's root directory and can potentially execute code on the server.
Solution:   No solution was available at the time of this entry.
Vendor URL:  www.microsoft.com/technet/security/ (Links to External Site)
Cause:   Input validation error
Underlying OS:  Windows (98)

Message History:   This archive entry is a follow-up to the message listed below.
Mar 19 2001 Microsoft Personal Web Server Contains An Old Internet Information Server (IIS) Vulnerability Allowing Unauthorized Directory Listings and Possible Code Execution For Remote Users



 Source Message Contents

Subject:  Re: Microsoft - Personal Web Server Extended UNICODE Directory


Hi All -

Personal Web Server is, of course, not intended to host web sites on the
Internet.  It's only intended to be used in protected environments such
as home networks and the like.  If you're hosting an Internet site, IIS
is the appropriate product to use.  Regards,

Scott Culp
Security Program Manager
Microsoft Security Response Center

-----Original Message-----
From: Dinos Pastos [mailto:dinopio@LINUX.COM.CY] 
Sent: Sunday, March 18, 2001 2:16 AM
To: BUGTRAQ@SECURITYFOCUS.COM
Subject: Microsoft - Personal Web Server Extended UNICODE Directory
Traversal Vulnerability


Hi all...

Just wanted to point out that while testing my Default installation of
Windows 98 running Microsoft Personal Web Server that came with the
Windows98 SE CD I discovered that the famous IIS 4/5 Unicode Directory
Traversal Vulnerability applies also to this Server just as bad as in
IIS.

The exploit method is the same :
http://PWS-server/scripts/..%c1%9c../windows/notepad.exe

I wont go in to detail on how to exploit a Windows machine... (Sorry
script kiddies)...

Patches: Dunno.
Quickfixes: Use Linux.

Dinos Pastos - dinopio@linux.com.cy
Security Advisor


 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2018, SecurityGlobal.net LLC