| VID |
21202 |
| Severity |
40 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
Sambar Server is a multi-threaded HTTP server for Microsoft Windows and Unix systems. A problem exists with the Microsoft Windows distribution of Sambar WWW Server.
Sambar WWW Server is bundled with a sample script('/session/pagecount') which creates temporary files ('c:\sambardirectory\tmp') on the host. However, it is possible for a remote attacker to submit a specially-crafted URL request appended with "dot dot" sequences (/../) which will cause pagecount to overwrite existing files or create files with arbitrary filenames on the Web server. Files overwritten in this manner will be corrupted. Loss of critical data and a denial of services may occur if system files are overwritten.
Vulnerable systems:
Sambar version 5.0 Beta 5 and below |
| Recommendation |
Remove this script, or Upgrade to the latest version (Sambar version 5.0 Beta 6 and above).
As a workaround, comment out the following line in your config.ini and restart your server:
INIT = samples.dll:general_init |
| Related URL |
CVE-2001-1010 (CVE) |
| Related URL |
3092 (SecurityFocus) |
| Related URL |
6916 (ISS) |
|
