| VID |
22099 |
| Severity |
30 |
| Port |
4080 |
| Protocol |
TCP |
| Class |
IChat |
| Detailed Description |
iChat ROOMS Webserver up to version 3.00 allow any remote user to read arbitrary files on the target system by doing the request :
http://chat.server:4080/../../../../../../etc/passwd
¡Ø BUGTRAQ:19980908 bug in iChat 3.0 (maybe others) |
| Recommendation |
Upgrade your iChat server to the latest version or disable it |
| Related URL |
CVE-1999-0897 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
1623 (ISS) |
|
