SecuMania Security Portal - Realsecure CGI Attack Subversion Vulnerability

Members Login

Rss Feeds

Get our latest content via RSS feeds.

Report a Vulnerability

Report a vulnerability or exploit that you have found to SecuMania.
vul[at]SecuMania.org

we are exporter and supplier of gererator, we are supplyig of all kinds of generator

PHPSelect Submit-A-Link HTML Injection V...

we are manufactrer and supplier of generators, air cooled,small, big, silent, all kind of generator ...

Frattini blows off Brussels to join Berl...

Democratic Representative Mike Kernell’s son, David Kernell, was caught by authorities. Apparently...

US warez sitemaster jailed for 30 months

On October 5, 2008, the CW Network premiered a new drama from the creators of The Sopranos. The new ...

CodeBreak Codebreak.PHP Remote File Incl...

As of version 1.1.4, this issue has been solved. The script now includes the necessary file using an...

Acer Sees Linux as Key to Low-cost Lapto...

Free Laptop gift - Buy latest mobile phones on best contract deals & get free laptop in UK

Advanced Image Hosting (AIH) 2.1 Remote ...

thanks

Basics of the One-Time-Pad

莆田SEO www.0594seo.com.cn 莆田SEM搜索引擎优化营销 www.ptsem.org.cn

Realsecure CGI Attack Subversion Vulnera...

hi webmaster,plz help me to find any information about account harvesting and traversal path attack ...

AR-Blog Comment HTML Injection Vulnerabi...

[…] self-propagating malware in the first place. Share this post: email it! | bookmark it! | digg ...

Packet Storm

Packet Storm Last 10 Exploits

Packet Storm Last 10 Advisories

Packet Storm Last 10 Tools

Packet Storm Last 10 Miscellaneous Files

Packet Storm Headlines

Visits today:	506
Visits yesterday:	500
Visits month:	13253
Visits total:	129242
Pages total:	2022918

Realsecure CGI Attack Subversion Vulnerability

Wednesday, 01 March 2000

Realsecure CGI Attack Subversion Vulnerability
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	Yes
Published:	Mar 01 2000 12:00AM
Updated:	Mar 01 2000 12:00AM
Credit:	This vulnerability was discovered by Stephane AUBERT <Stephane.Aubert@hsc.fr> and posted to the Bugtraq mailing list on February 29, 2000.
Vulnerable:	Internet Security Systems RealSecure 3.2.1999 Internet Security Systems RealSecure 3.2 Internet Security Systems RealSecure 3.1 Internet Security Systems RealSecure 3.0 - Microsoft Windows NT 4.0 SP6 - Microsoft Windows NT 4.0 SP5 - Microsoft Windows NT 4.0 SP4 - Microsoft Windows NT 4.0 SP3 - Microsoft Windows NT 4.0 SP2 - Microsoft Windows NT 4.0 SP1 - Microsoft Windows NT 4.0
Not Vulnerable:
Description:	Under certain versions of Internet Security Systems RealSecure Network Intrusion Detection Software (NIDS) it is possible to launch CGI attacks against webservers without the NIDS detecting the attacks as it should. This is possible by way of intruders using the Whisker scanner, a tool designed to scan and exploit web based CGI vulnerabilities by using techniques which are designed to subvert signature based NID's. The methods which Whisker utilizes are too detailed for this vulnerability entry to cover. As such we have included a URL in the 'Credit' section of this vulnerability which points to the Whisker home page. The following explanation is provided by Stephane Aubert <Stephane.Aubert@hsc.fr> the author of this discovery from his original Bugtraq posting. "Stealth scans can be done using Whisker v1.3.0a and via the HEAD method. It is also possible to use the GET method (-M 2), in that case you must use an evading mode (0, 6 or both) to avoid detection. " Examples: ./whisker.pl -h xxx.yyy.zzz.ttt -I 1246 ./whisker.pl -h xxx.yyy.zzz.ttt -I 0 -M 2 ./whisker.pl -h xxx.yyy.zzz.ttt -I 6 -M 2 ./whisker.pl -h xxx.yyy.zzz.ttt -I 60 -M 2 Please see the 'Credit' section of this entry for more detailed information.
Exploit:	./whisker.pl -h xxx.yyy.zzz.ttt -I 1246 ./whisker.pl -h xxx.yyy.zzz.ttt -I 0 -M 2 ./whisker.pl -h xxx.yyy.zzz.ttt -I 6 -M 2 ./whisker.pl -h xxx.yyy.zzz.ttt -I 60 -M 2 Please see the 'Credit' section of this entry for the URL to the Whisker scanning tool.
Solution:	Currently SecuMania is not aware of any solution for this issue. If you are aware of more recent information, please mail us at: vul[at]SecuMania.org.
References:	Internet Security Systems (ISS) whisker v1.3.0a (RFP)
Source:	Securityfocus