Bugtraq mailing list archives
Re: def-2001-32 - Allaire JRun directory browsing vulnerability
From: "Felix Huber" <huberfelix () webtopia de>
Date: Fri, 30 Nov 2001 00:09:06 +0100
http://www.victim.com/%3f.jspNot only IIS is affected, i found vulnerable Sites running Apache 1.3.19/Solaris and Apache 1.3.12/Linux.
I just got a mail from Stephen Dupre (Macromedia), he helped me a lot to bring light in this thing. JRun seems to be fine on Solaris/Linux/HPUX (but he still investigates this). You can find the Macromedia Advisory here: http://www.allaire.com/handlers/index.cfm?ID=22236&Method=Full The problem on the other sites seems to be mod_jk/mod_rewrite or Jserv (Apache.org is contacted). But it's still unclear at the moment what causes this behavior (Directory Listing). Simply use the NASL File from my last Mail, it will work in any case. At the moment even a large german Webhoster running Linux is vulnerable to this. Regards, Felix Huber ------------------------------------------------------- Felix Huber, Security Consultant, Webtopia Guendlinger Str.2, 79241 Ihringen - Germany huberfelix () webtopia de (07668) 951 156 (phone) http://www.webtopia.de (07668) 951 157 (fax) (01792) 205 724 (mobile) -------------------------------------------------------
Current thread:
- Re: def-2001-32 - Allaire JRun directory browsing vulnerability Felix Huber (Nov 29)
- Re: def-2001-32 - Allaire JRun directory browsing vulnerability Felix Huber (Nov 30)
- <Possible follow-ups>
- RE: def-2001-32 - Allaire JRun directory browsing vulnerability George Hedfors (Nov 29)
- Re: def-2001-32 - Allaire JRun directory browsing vulnerability null null (Nov 30)