|
Family: CGI abuses --> Category: destructive_attack
PatchLink Update Server nwupload.asp Directory Traversal Vulnerability Vulnerability Scan
Vulnerability Scan Summary Tries to write a file using PatchLink Update Server
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote web server contains an ASP script that is affected by a
directory traversal flaw.
Description :
The remote host is running PatchLink Update Server, a patch and
vulnerability management solution.
The version of PatchLink Update Server installed on the remote fails
to sanitize input to the '/dagent/nwupload.asp' script of directory
traversal sequences and does not require authentication before
removing directories and writing to files as the user 'PLUS
ANONYMOUS'. An unauthenticated attacker can leverage this flaw to
remove directories required by the application and write arbitrary
content to files on the affected host.
Note that Novell ZENworks Patch Management is based on PatchLink
Update Server and is affected as well.
See also :
http://www.securityfocus.com/archive/1/438710/30/0/threaded
http://support.novell.com/cgi-bin/search/searchtid.cgi?10100709.htm
Solution :
Apply patch 6.1 P1 / 6.2 SR1 P1 if using PatchLink Update Server or
6.2 SR1 P1 if using Novell ZENworks Patch Management.
Threat Level:
Low / CVSS Base Score : 2.3
(AV:R/AC:L/Au:NR/C:P/I:N/A:N/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|