TMS zl Module IPS/IDS Signature Reference Guide RLX.10.2.2.94
ProCurve TMS zl Module IPS/IDS Signature
Reference Guide Version RLX.10.2.2.94
132
Signature ID: 1069
Big Brother file browsing Vulnerability
Threat Level: Warning
Industry ID: CVE-1999-1462 Bugtraq: 142 Nessus: 10025
Signature Description: Big Brother is a loosely-coupled distributed set of tools for monitoring and displaying the
current status of an entire network and notifying the admin should need be. Sean MacGuire Big Brother 1.0 9c and
Sean MacGuire Big Brother 1.0 9b are vulnerable versions. In these verions the CGI script bb-hist.sh, the new history
viewer, can be exploited to allow the partial display of local files provided they are readable by the user id CGI scripts
are executed under by the web server, and that they are text based. Patches are available at vendor website, Sean
MacGuire Big Brother 1.0 9b is not vulnerable update this verions or latest version.
Signature ID: 1070
Big Brother bb-hist.sh file browsing vulnerability
Threat Level: Warning
Industry ID: CVE-1999-1462 Bugtraq: 142 Nessus: 10025
Signature Description: Big Brother is a loosely-coupled distributed set of tools for monitoring and displaying the
current status of an entire network and notifying the admin should need be. Sean MacGuire Big Brother 1.0 9c and
Sean MacGuire Big Brother 1.0 9b are vulnerable versions. In these verions the CGI script bb-hist.sh, the new history
viewer, can be exploited to allow the partial display of local files provided they are readable by the user id CGI scripts
are executed under by the web server, and that they are text based. Patches are available at vendor website, Sean
MacGuire Big Brother 1.0 9b is not vulnerable update this verions or latest version .
Signature ID: 1071
Bb-histlog.sh information disclosure vulnerability
Threat Level: Warning
Industry ID: CVE-1999-1462 Bugtraq: 142 Nessus: 10025 ,10025
Signature Description: Big Brother is a loosely-coupled distributed set of tools for monitoring and displaying the
current status of an entire network and notifying the admin should need be. Sean MacGuire Big Brother 1.0 9c and
Sean MacGuire Big Brother 1.0 9b are vulnerable versions. In these verions the CGI script bb-histlog.sh, the new
history logs viewer, can be exploited to allow the partial display of local files provided they are readable by the user id
CGI scripts are executed under by the web server, and that they are text based. Patches are available at vendor website,
Sean MacGuire Big Brother 1.0 9b is not vulnerable update this verions or latest version .
Signature ID: 1073
BB4 Technologies Big Brother Directory Traversal Vulnerability
Threat Level: Warning
Industry ID: CVE-2000-0638 Bugtraq: 1455 Nessus: 10460
Signature Description: Big Brother is a loosely-coupled distributed set of tools for monitoring and displaying the
current status of an entire network and notifying the admin should need be. Big Brother 1.4h1 and earlier versions are
vulnerable, in these versions the CGI script bb-hist.sh is allowing remote attackers to read arbitrary files via a dot dot
sequencing with HOSTSVC parameter. When the server received this type URL request from client(attacker), this
attacker can be exploit the partial display of local files provided they are readable by the user id CGI scripts are
executed under by the web server, and that they are text based. Patches are available at vendor website.
Signature ID: 1074
Big Brother bb-rep.sh base file browsing vulnerability
Threat Level: Warning
Industry ID: CVE-1999-1462 Bugtraq: 142 Nessus: 10025