SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Web Server/CGI)  >   Xitami Web Server Vendors:   iMatix
Xitami Web Server Fails to Log Non-HTTP Connections
SecurityTracker Alert ID:  1007452
SecurityTracker URL:  http://securitytracker.com/id/1007452
CVE Reference:   GENERIC-MAP-NOMATCH   (Links to External Site)
Date:  Aug 10 2003
Impact:   Modification of user information
Exploit Included:  Yes  
Version(s): 2.4d9
Description:   CyberTalon reported a vulnerability in the Xitami web server. The server does not log non-HTTP connections.

It is reported that a remote user can connect to the web server and send non-HTTP data without the data being logged.

A demonstration exploit is provided:

telnet [target webserver] 80
harmful data.........
[Enter]
[Enter]

Impact:   A remote user can connect to the web server without the server logging the connection.
Solution:   No solution was available at the time of this entry.
Vendor URL:  www.xitami.com (Links to External Site)
Cause:   State error
Underlying OS:  Windows (Any)

Message History:   None.


 Source Message Contents

Subject:  Xitami WebServer 2.4d9 fails to log terminal connections


       Xitami WebServer 2.4d9 fails to log terminal connections
                       Found by: CyberTalon
-----------------------------------------------------------------------
1. Intro
2. Problem
3. Impact
4. Solution
5. Exploit
6. Ending
-----------------------------------------------------------------------
1. I have found a logging vulnerability in Xitami WebServer 2.4d9.
-----------------------------------------------------------------------
2. Xitami fails to log terminal connections to the server.
-----------------------------------------------------------------------
3. An attacker could send harmful data to the server thru a terminal instead
of the normal broswer and possibly cause DoS or compromisement and no
evidence would be logged.
-----------------------------------------------------------------------
4. No solution that I know of, but they should implement something into the
server to make it atleast log the terminal connections to the access log or
error log like the other webservers do.
-----------------------------------------------------------------------
5. Simple Exploit:

telnet webserver 80
harmful data.........
[Enter]
[Enter]

NO LOG OF THAT PRESENSE!
-----------------------------------------------------------------------
6. This vulnerability could be a great resource to the attacker to reply on
when trying to exploit the server. It should be fixed asap.

-CT 08-09-03

_________________________________________________________________
Add photos to your e-mail with MSN 8. Get 2 months FREE*.
http://join.msn.com/?page=features/featuredemail


 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2021, SecurityGlobal.net LLC