| VID |
21519 |
| Severity |
30 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The Hosting Controller is vulnerable to multiple information disclosure vulnerabilities. Hosting Controller is an application for Microsoft Windows operating systems that consolidates all hosting tasks into one interface. Hosting Controller versions 6.1 Hotfix 1.7 and earlier allow a remote attacker to disclose sensitive information, which may be used to carry out further attacks against a computer. The following individual vulnerabilities are reported:
1) A remote attacker can download the file $path/logs/HCDiskQuotaService.csv. This file contains information such as bandwidth and disk usage and other statistics. The domain names of all hosted domains are also placed in this file.
2) By supplying a target domain name through the 'login ID' parameter of a URI link to the 'forgotpassword.asp' script, a remote attacker can obtain the target domain's administrator email address.
* References:
http://www.securitytracker.com/alerts/2005/Mar/1013395.html
http://isun.Shabgard.org/hc2.html
* Platforms Affected:
HostingController.com, Hosting Controller versions 6.1 Hotfix 1.7 and earlier
Microsoft Windows Any version |
| Recommendation |
Apply the patch for this vulnerability, available from the Hosting Controller Web site at http://www.hostingcontroller.com/english/index.html |
| Related URL |
CVE-2005-0695 (CVE) |
| Related URL |
12748 (SecurityFocus) |
| Related URL |
19637 (ISS) |
|
