|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: Re: [ Hackerslab bug_paper ] ntop web mode vulnerabliity
From: Vanja Hrustic (vanja
RELAYGROUP.COM)Date: Wed Aug 02 2000 - 11:10:42 CDT
- Next message: Ryan Fox: "Re: Windows 9x? (Re: Microsoft Security Bulletin (MS00-047))"
- Previous message: Bob Wickline: "Sun Security Bulletin #00195 (fwd)"
- In reply to: root: "[ Hackerslab bug_paper ] ntop web mode vulnerabliity"
- Reply: Vanja Hrustic: "Re: [ Hackerslab bug_paper ] ntop web mode vulnerabliity"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Wed, 2 Aug 2000, root wrote:
> It's web mode is not check URL path.
>
> So if URL is "http://URL:port/../../shadow", remote user will read all file.
>
> "everyone can access traffic information" !!!
Would you mind specifying the version of ntop you have tested?
The problem above has been reported to the author 2 (or even more) months
ago, and it has been fixed immediately. There were few other security
related issues which have been fixed as well in past few months.
I have just tried version 1.3.1, and it properly returns 401 code when
trying to access '..' paths.
Looks like you have been testing some older version.
Regards,
Vanja
- Next message: Ryan Fox: "Re: Windows 9x? (Re: Microsoft Security Bulletin (MS00-047))"
- Previous message: Bob Wickline: "Sun Security Bulletin #00195 (fwd)"
- In reply to: root: "[ Hackerslab bug_paper ] ntop web mode vulnerabliity"
- Reply: Vanja Hrustic: "Re: [ Hackerslab bug_paper ] ntop web mode vulnerabliity"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]