From: Secunia Security Advisories (sec-advsecunia.com)
Date: Fri Jun 20 2003 - 08:00:02 CDT

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

TITLE:
Power Server Multiple Vulnerabilities

READ ONLINE:
http://www.secunia.com/advisories/9083/

CRITICAL:
Moderately critical

IMPACT:
Exposure of sensitive information, DoS

WHERE:
From remote

SOFTWARE:
Power Server 1.x

DESCRIPTION:
Multiple vulnerabilities has been identified in Power Server allowing
FTP users to retrieve other users passwords and a Denial of Service.

1) The web server can't handle "GET" requests with more than 500,000
times "/". This causes the service to consume large amounts of CPU
power.

2) It is possible to cause the FTP service to consume large amounts
of CPU power by supplying 50,000 characters to one of the following
arguments: USER, PASS, CWD, LS, MKDIR

3) All passwords and usernames for the FTP service are stored in
plain text.

4) Trivial directory traversal is possible, using "ls c:/" and "get
c:/path_to_users/username.ini". This allows FTP users to access any
user profile or file.

SOLUTION:
Disable the FTP service.

REPORTED BY / CREDITS:
Ziv Kamir

----------------------------------------------------------------------

Secunia recommends that you verify all advisories you receive, by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

Contact details:
Web : http://www.secunia.com/
E-mail : supportsecunia.com
Tel : +44 (0) 20 7016 2693
Fax : +44 (0) 20 7637 0419

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories

----------------------------------------------------------------------

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]