SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Game)  >   Half-Life Vendors:   Valve Software
Half-Life Dedicated Server Discloses Configuration Files to Remote Users if Downloads Are Permitted
SecurityTracker Alert ID:  1008240
SecurityTracker URL:  http://securitytracker.com/id/1008240
CVE Reference:   GENERIC-MAP-NOMATCH   (Links to External Site)
Date:  Nov 19 2003
Impact:   Disclosure of authentication information, Disclosure of system information, Disclosure of user information
Exploit Included:  Yes  

Description:   An information disclosure vulnerability was reported in the Half-Life dedicated server. A remote user can obtain configuration files or cause denial of service conditions is downloads are permitted.

3APA3A reported that if the server is configured to permit downloads (allowdownload = 1), a remote user can download configuration files such as server.cfg. The configuration files may contain sensitive information, such as paswords.

Some demonstration exploit commands are provided:

cmd dlfile server.cfg
cmd dlfile addons/amx/users.ini
cmd dlfile addons/amx/mysql.cfg
cmd dlfile maps/de_torn.bsp

It is also reported that a remote user can download a very large file (such as map) to cause the target server to crash.

The original advisory is available at:

http://www.security.nnov.ru/search/document.asp?docid=5421

Impact:   A remote user can download configuration files, some of which may contain passwords or other sensitive information.
Solution:   No solution was available at the time of this entry.

The author of the report indicates that, as a workaround, you can disable downloads.

Cause:   Access control error
Underlying OS:  Linux (Any), Windows (Any)

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC