Manualshelf

TMS zl Module IPS/IDS Signature Reference Guide RLX.10.2.2.94

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
12345678910
ProCurve TMS zl Module IPS/IDS Signature
Reference Guide Version RLX.10.2.2.94
6
server on the World Wide Web. Apache::ASP module provides support for Active Server Pages on the Apache Web
Server with Perl scripting, and enables developing of dynamic web applications with session management and
embedded Perl code. Apache::ASP module 1.93 and earlier come with source.asp file that allows anyone to write to
files in the '/site/eg/' directory An attacker may use this flaw to upload his own scripts and execute arbitrary commands
on this host.
Signature ID: 18
Microsoft IIS ASP Alternate Data Streams Source Disclosure Vulnerability
Threat Level: Severe
Industry ID: CVE-1999-0278 Bugtraq: 149 Nessus: 10362
Signature Description: Microsoft Internet Information Server (IIS) is a web server for Windows platform. IIS versions
4.0 and prior are vulnerable to a source code disclosure vulnerability. NTFS supports multiple data streams within a
file. The main data stream, which stores the primary content, has an attribute called $DATA. Accessing this NTFS
stream through IIS from a browser such as http://xyz/myasp.asp::$DATA may display the contents of a file
(myasp.asp) that is normally set to be acted upon by an Application Mapping. Files which are granted read access and
are on NTFS file system can be viewed by the remote user.
Signature ID: 19
ASP Source Code Disclosure DOT Cgi Vulnerability
Threat Level: Severe
Industry ID: CVE-1999-0253 CVE-1999-0154 Bugtraq: 1814 Nessus: 10363
Signature Description: Microsoft IIS (Internet Information Services, formerly called Internet Information Server) is a
set of Internet-based services for servers using Microsoft Windows. In IIS versions 2.0 and 3.0, it is possible to get the
source code of the remote ASP scripts by appending '%2e' instead of a '.' (dot) at the end of the request (ex: GET
/default%2easp). ASP source codes usually contain sensitive information such as logins and passwords.
Signature ID: 20
HIS Software Auktion 1.62 Directory Traversal Vulnerability
Threat Level: Severe
Industry ID: CVE-2001-0212 Bugtraq: 2367 Nessus: 10638
Signature Description: HIS Auktion is a CGI script for hosting and managing online auctions. A remote user could
gain read access to known files outside of the root directory where HIS Software Auktion 1.62 resides. Requesting a
specially crafted URL composed of '../' sequences along with the known filename will disclose the requested file. This
vulnerability could also lead to the execution of arbitrary code.
Signature ID: 21
AXIS StorPoint Vulnerability
Threat Level: Severe
Industry ID: CVE-2000-0191
Bugtraq: 1025 Nessus: 10023
Signature Description: AXIS StorPoint CD+ is CD/DVD server for efficiently storing and sharing CD/DVD media
across networks. It is possible to access the remote host AxisStorpoint configuration by requesting:
http://server/cd/../config/html/cnf_gi.htm. Gaining such information can be starting point of a more serious attack, as
the attacker has some idea about system configuration.
Signature ID: 22
Basilix WebMail Incorrect File Permissions Vulnerability
Threat Level: Warning
Industry ID: CVE-2001-1044 Bugtraq: 2198 Nessus: 10601
Signature Description: BasiliX is a webmail application based on PHP and IMAP, and powered with the MySQL