TMS zl Module IPS/IDS Signature Reference Guide RLX.10.2.2.94
ProCurve TMS zl Module IPS/IDS Signature
Reference Guide Version RLX.10.2.2.94
171
Signature ID: 1264
Niti Telecom Caravan Business Server Remote Directory Traversal Vulnerability
Threat Level: Warning
Industry ID: CVE-2004-2170
Bugtraq: 9555
Signature Description: Caravan Business Server is used to develop web applications. Niti Telecom Caravan Business
Server 2.00-03D is vulnerable to directory traversal attack. This versions is not validating the user supplied inputs
through the request URLs after received the request, so there is possible for an external user to perform a directory
traversal attack against the server by manipulating the parameter "fname" in the Sample_showcode.html file. finally the
remote attacker may view any files readable by the web server using '../' escape sequences in URI requests.
Signature ID: 1265
Secure Authentication Bypass Vulnerability
Threat Level: Warning
Bugtraq: 4621
Signature Description: Apache Software Foundation Apache 1.3.24, Apache Software Foundation Apache 1.3.23,
Apache Software Foundation Apache 1.3.22, Apache Software Foundation Apache 1.3.20, Apache Software
Foundation Apache 1.3.19 are vulnerable versions to gain accessing. These versions of software from SecureSite does
not perform stringent checks when validating the credentials of a client host connecting to the services offered on a host
server. This can lead to unauthorized access and possibly escalated privileges to that of the administrator.
Signature ID: 1266
Novell Groupwise Servlet Gateway Default Authentication Vulnerability
Threat Level: Warning
Industry ID: CVE-2001-1195 Bugtraq: 3697 Nessus: 12122
Signature Description: Novell Groupwise Servlet Gateway is a product that allows Java servlets to be run with
NetWare, using Novell JVM for NetWare v1.1.7b and NetWare Enterprise Web Server.A remote attacker may gain
access to the Servlet Manager interface by entering the default username/password. The default username is "servlet"
and the default password is "manager".Novell Groupwise Enhancement Pack 5.5 and Novell Groupwise 6.0 are prone
to this vulnerability.
Signature ID: 1267
SmartWin CyberOffice Shopping Cart 2.0 Client Information Disclosure Vulnerability
Threat Level: Warning
Industry ID: CVE-2000-0925 Bugtraq: 1734
Signature Description: Smartwin Technology CyberOffice Shopping Cart is a shopping cart application for e-
commerce enabled websites running Windows NT 4.0 or 2000.It is possible for a remote user to gain read access to the
_private directory on a website running CyberOffice Shopping Cart 2.0. By default the _private directory has world
readable permissions. The Microsoft Access Database which contains confidential client details (such as customer
orders and unencrypted credit card information) is stored in the _private directory and is thus accessible to attackers.An
attacker need only request "http://target/_private/shopping_cart.mdb" with a browser to access it.SmartWin Technology
CyberOffice Shopping Cart 2.0 is prone to this vulnerability.
Signature ID: 1268
Trend Micro InterScan eManager Buffer Overflow Vulnerability
Threat Level: Warning
Industry ID: CVE-2001-0958
Bugtraq: 3327 Nessus: 11747
Signature Description: Trend Micro InterScan eManager is a plug-in for InterScan which manages spam, message
content, and mail delivery. It can be managed through a web-based console interface. Trend Micro InterScan eManager
3.51 j and Trend Micro InterScan eManager 3.51 versions are vulnerable, these versions CGI components of eManager