[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] userList.php possible exploit

Subject: Re: [cobalt-users] userList.php possible exploit
From: Gerald Waugh <gwaugh@xxxxxxxxxxxxxxxxxxxxxxx>
Date: Mon May 5 03:37:00 2003
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

On Mon, 5 May 2003, Tom Honec wrote:
>
> I would like to bring to your attention a recent exploit which we found
> on some Cobalt RaQ 550s.  I would like your assistance in verifying this
> possible exploit.
>
> Possible Exploit:
> An authenicated Site Administrator is able to view all users on the
> local system.
>
> Steps to Duplicate:
> 1.  Create a site on the RaQ 550
> 2.  Assign a user with Site Administrator privledge
> 3.  Access the following URL:
> http://www.domain.com:81/base/user/userList.php?group=
> 4.  Login with the newly created Site Administrator account
> 5.  You should see all users on the server
>
> My question to User Group, is has this been corrected by Sun, can it be
> duplicated?
>

  I get a page not found.

Gerald
--
http://frontstreetnetworks.com | http://store.raqware.com
  Front Street Networks LLC, 229 Front Street, Ste.#C
  New Haven, CT 06513-3203 | phone: +1-203-785-0699

Follow-Ups:
- RE: [cobalt-users] userList.php possible exploit
  - From: H.P. Noordam

References:
- [cobalt-users] userList.php possible exploit
  - From: Tom Honec

Prev by Date: [cobalt-users] RAQ4R Tomcat version, PKG
Next by Date: [cobalt-users] not able to recieve emails on Raq4
Previous by thread: [cobalt-users] userList.php possible exploit
Next by thread: RE: [cobalt-users] userList.php possible exploit

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index