Bugtraq mailing list archives
Re: Tektronix PhaserLink Webserver Reveals Admin Password
From: blake () MC NET (Blake Frantz)
Date: Wed, 17 Nov 1999 16:43:35 -0600
Here are a couple more problems with the Tektronix webserver services: (We run the Tektronix 740 Extended) When the people at Tektronix designed the web services, security was in mind. For example, some URLs that require password authentication do generate a key to pass along instead of the plain password. For example, if you download the Job Accounting Records the URL is as follows: http://<printername>/config_job_browse.html?http_password=<alphabet soup>&job_record=30 This is great, except it appears that the key is only generated one time, I can paste this URL into any browser on any machine and view the URL with no restrictions. In walks the History folder, any user that has access to your machine, unless you clear the history, can access any URL viewed by the administrator, including pages that require password authentication. If the administrator ever downloads the Job Accounting log, he/she is required to enter in the admin password. After the password is entered and submitted, the page containing the job accounting links has the following url: http://<printername>/config_job_links?http_password=<cleartextpassord> Basically, any user that gets noses and decides to browse your History folder can stumble upon this url with the words "http_password=joo" slapping them in the face. Point being made, clear you history if you use the web services for printer administration, and restrict access the ports corresponding to the services you have running. ---------------------------- Blake Frantz Systems Administrator Specialty Care Systems, Inc. blake () mc net ---------------------------- "Our Government, like diapers, should be changed regularly and often for the same reason." - Don't know
Current thread:
- Windows NT update carries bug Williams, Ken (Nov 15)
- Re: Windows NT update carries bug Alan J. Wylie (Nov 16)
- Re: Windows NT update carries bug Fabian Kroenner (Nov 16)
- [Fwd: Printer Vulnerability: Tektronix PhaserLink Webserver gives Administrator Password] Dennis W. Mattison (Nov 16)
- Jet Vulnerability affect Office 95 users (fwd) ah1 () SECURITYFOCUS COM (Nov 17)
- Re: [Fwd: Printer Vulnerability: Tektronix PhaserLink Webserver gives Administrator Password] Ronan Waide (Nov 17)
- Re: Tektronix PhaserLink Webserver Reveals Admin Password Blake Frantz (Nov 17)
- Remote DoS attack against Microsoft SQL Server 7.0 Kevork Belian (Nov 17)
- Re: Tektronix PhaserLink Webserver Reveals Admin Password elfchief () LUPINE ORG (Nov 18)
- Potential vulnerability in Oracle Mary Ann Davidson (Nov 18)
- Re: [Fwd: Printer Vulnerability: Tektronix PhaserLink Webservergives Administrator Password] Dennis W. Mattison (Nov 18)
- buffer overflow in HP JetDirect module (probably affects all HP printers with network support) Tobias Haustein (Nov 19)
- Re: buffer overflow in HP JetDirect module (probably affects all HP printers with network support) Brian (Nov 19)
- Re: buffer overflow in HP JetDirect module (probably affects all HP printers with network support) Pat Hayden (Nov 20)
- Remote DoS Attack in Vermillion FTP Daemon (VFTPD) v1.23 Vulnerability Ussr Labs (Nov 22)
- Re: Windows NT update carries bug Alan J. Wylie (Nov 16)
- <Possible follow-ups>
- Re: Windows NT update carries bug Peter Kane (Nov 16)
- Re: Windows NT update carries bug Tony Plastino (Nov 16)