[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] DDIVRT-2011-34 Metropolis Technologies OfficeWatch Directory Traversal

To: <full-disclosure@xxxxxxxxxxxxxxxxx>
Subject: [Full-disclosure] DDIVRT-2011-34 Metropolis Technologies OfficeWatch Directory Traversal
From: ddivulnalert <ddivulnalert@xxxxxxxxxxxxxxxx>
Date: Mon, 3 Oct 2011 12:03:51 -0500

Title
-----
DDIVRT-2011-34 Metropolis Technologies OfficeWatch Directory Traversal

Severity
--------
High

Date Discovered
---------------
August 15, 2011

Discovered By
-------------
Digital Defense, Inc. Vulnerability Research Team
Credit: Chris Graham and r@b13$

Vulnerability Description
-------------------------
Metropolis Technologies OfficeWatch enables a web server on TCP port 80 that is 
susceptible to a directory traversal. An attacker may send a ../ 
(dot-dot-slash) sequence to traverse out of the web root and access arbitrary 
files on the host.

Solution Description
--------------------
Until a patch is released by the vendor, it is recommended to restrict access 
to the web server to authorized hosts only. Access controls can be configured 
through Windows firewall.

Tested Systems / Software
-------------------------
Metropolis Technologies OfficeWatch for Windows 2000/XP/2003/Vista Version 
2011.06.20

Tested on Windows Server 2003 and XP

Vendor Contact
--------------
support2011@xxxxxxxxxxxxxx

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: [Full-disclosure] DDIVRT-2011-36 Cybele Software, Inc. ThinVNC Product Suite Arbitrary File Retrieval
Next by Date: Re: [Full-disclosure] VPN providers and any providers in general...
Previous by thread: [Full-disclosure] DDIVRT-2011-36 Cybele Software, Inc. ThinVNC Product Suite Arbitrary File Retrieval
Next by thread: [Full-disclosure] [SECURITY] [DSA 2314-1] puppet security update
Index(es):
- Date
- Thread