[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-users] userList.php possible exploit

Subject: [cobalt-users] userList.php possible exploit
From: "Tom Honec" <tom@xxxxxxxxxxxx>
Date: Sun May 4 23:35:01 2003
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

Cobalt Users,

I would like to bring to your attention a recent exploit which we found
on some Cobalt RaQ 550s.  I would like your assistance in verifying this
possible exploit.

Possible Exploit:  
An authenicated Site Administrator is able to view all users on the
local system.  

Steps to Duplicate:
1.  Create a site on the RaQ 550
2.  Assign a user with Site Administrator privledge
3.  Access the following URL:
http://www.domain.com:81/base/user/userList.php?group=
4.  Login with the newly created Site Administrator account
5.  You should see all users on the server

My question to User Group, is has this been corrected by Sun, can it be
duplicated?

Thank you all for your time.


If you have any questions let us know.   Have a nice day.
 
Sincerely,
   Tom Honec
   Nexpoint Technologies Inc.
   Tel:  1-866-NEXPOINT [639-7646]
   http://www.nexpoint.net/

Follow-Ups:
- Re: [cobalt-users] userList.php possible exploit
  - From: Gerald Waugh

Prev by Date: Re: [cobalt-users] **UPDATE** Webalizer/Summarizer PAQ
Next by Date: [cobalt-users] RAQ4R Tomcat version, PKG
Previous by thread: [cobalt-users] mySQL performance?
Next by thread: Re: [cobalt-users] userList.php possible exploit

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index