SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |    Help    |   

SecurityTracker
Archives


Welcome to SecurityTracker!
 
Click to Sign Up
Sign Up
Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
Instant Alerts
Buy our Premium Vulnerability Notification Service to receive customized, instant alerts
Affiliates
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
Report a Bug
Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com
Questions?
Want to learn about SecurityTracker? We've got answers to frequently asked questions right here
Sign Up!





Category:  Application (Web Server/CGI)  >  Falcon Web Server Vendors:  BlueFace
BlueFace's Falcon Web Server Lets Remote Users Access Password-Protected Files
SecurityTracker Alert ID:  1004381
CVE Reference:  GENERIC-MAP-NOMATCH   (Links to External Site)
Date:  May 27 2002
Impact:  Disclosure of system information, Disclosure of user information
Exploit Included:  Yes  
Advisory:  SecurityOffice.net
Version(s): 2.0.0.1021
Description:  An information disclosure vulnerability was reported in the Falcon Web Server. A remote user can craft a URL request in a certain manner to view password-protected contents without supplying a password.

Another URL parsing bug was reported in the Falcon Web Server, this one involving a trailing "." period character at the end of the ostensibly protected filename or foldername. A remote user can send the following type of URL to view password-protected files or folders on the system:

http://host/protectedfolder./
Impact:  A remote user can gain read access to files and folders that are supposed to be password-protected.
Solution:  No solution was available at the time of this entry.
Vendor URL:  www.blueface.com/ (Links to External Site)
Cause:  Access control error
Underlying OS:  Windows (Any)
Reported By:  Tamer Sahin <ts@securityoffice.net>
Message History:   None.

 Source Message Contents
Date:  Mon, 27 May 2002 12:53:13 +0300
From:  Tamer Sahin <ts@securityoffice.net>
Subject:  [SecurityOffice] Falcon Web Server Unauthorized File Disclosure Vulnerability #2

 

--[ Falcon Web Server Unauthorized File Disclosure Vulnerability #2 ]--

--[ Type

File Disclosure

--[ Release Date

May 27, 2002

--[ Product / Vendor

Falcon Web Server is a desktop web server capable of running a small / 
medium website with a typical load of up to 50-80 hits per minute. The 
server has the ability to execute ISAPI and WinCGI applications from 
virtual directories.

http://www.blueface.com

--[ Summary

Due to a flaw in Falcon Web Server 2.0 for Windows, it is possible for a 
user to gain read access of known password protected files residing on a 
Falcon Web Server host.

http://host/protectedfolder./

--[ Tested

Windows 2000 / Falcon Web Server 2.0.0.1021
Windows 2000 / Falcon Web Server 2.0.0.1021 SSL Edition

--[ Vulnerable

Falcon Web Server 2.0.0.1021
Falcon Web Server 2.0.0.1021 SSL Edition

--[ Disclaimer

http://www.securityoffice.net is not responsible for the misuse or 
illegal use of any of the information and/or the software listed on this 
security advisory.

--[ Author

Tamer Sahin
ts@securityoffice.net
http://www.securityoffice.net

All our advisories can be viewed at http://www.securityoffice.net/articles/

Please send suggestions, updates, and comments to 
feedback@securityoffice.net

(c) 2002 SecurityOffice

This Security Advisory may be reproduced and distributed, provided that 
this Security Advisory is not modified in any way and is attributed to 
SecurityOffice and provided that such reproduction and distribution is 
performed for non-commercial purposes.

Tamer Sahin
http://www.securityoffice.net


Go to the Top of This SecurityTracker Archive Page



Home   |    View Topics   |    Search   |    Contact Us   |    Help

Copyright 2002, SecurityGlobal.net LLC