SecuriTeam - Denial of Service Vulnerability in Xeneo Web Server

Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus

Ask the Team
Mailing Lists
Advertising Info
Advisories
About SecuriTeam
Blogs

Brought to you by:

Suppliers of:

SecuriTeam in Your Inbox

New vulnerability?
New tool?
Tell us
(Our PGP key).

CanSecWest 2012

2nd Annual Cyber Security

Hack In Paris

Northern Solutions' Xeneo Web Server is a "fast, compact web server that makes it easy to set up and administer a web site on the Windows platform." A denial of service vulnerability has been discovered in the product.

Credit:
The original advisory is available by going to:
http://www.idefense.com/advisory/11.04.02b.txt
The information has been provided by David Endler of iDEFENSE, the vulnerability was discovered by Tamer Sahin .

Website Security Scan	Code Vulnerability Test	Network Assessment Tool
Detect hidden vulnerabilities	Exhaustive automated testing	Real-time, continuous security
Get guidance from professionals	of internal or 3rd party code.	scanning for your entire network

Protect your website!
Use an External Vulnerability Scanner!
Nothing to install. First report in 1 hour!
www.beyondsecurity.com/vulnerability-scanner

Vulnerable systems:
* Xeneo versions 2.1.0.0 (PHP version) and 2.0.759.6

Immune systems:
* Xeneo version 2.1.5 and above

Due to the improper handling of a specially crafted web request, remote attackers may launch a denial of service attack against the PHP version of Xeneo. The condition is triggered when the web server receives a request for '%'. Upon successful exploitation, the web server will crash with a Microsoft Visual C++ runtime error message. The following is an example attack URL:
http://target.server/%

Analysis:
Any remote user with access to the application can launch this attack, thereby denying legitimate users access to the server and the contents and/or additional services provided.

Workaround:
Use a filtering web proxy server to help mitigate against exploitation.

Vendor fix:
Xeneo 2.1.5 and later should fix the problem. The latest release is version 2.1.6.0, and it can be downloaded at: http://www.northernsolutions.com/downloads/xeneo_php_setup.exe.

Disclosure timeline:
10/06/2002 Issue disclosed to iDEFENSE
10/31/2002 Author notified
10/31/2002 iDEFENSE clients notified
10/31/2002 Response received from Robert Shanahan
11/04/2002 Public disclosure

blog comments powered by Disqus

	Novell Zenworks Software Packaging LaunchHelp.dll Code Execution Vulnerability
	Novell ZENWorks Software Packaging Antique ActiveX Control Code Execution Vulnerability
	Microsoft Internet Explorer swapNode Handling Code Execution Vulnerability
	Microsoft Internet Explorer Select Element Insufficient Type Checking Code Execution Vulnerability
	Internet Explorer Select Element Cache Code Execution Vulnerability
	Microsoft Office Graph DataFormat Signed Index Code Execution Vulnerability
	Microsoft Office Excel Conditional Expression Ptg Type Confusion Vulnerability
	Microsoft Internet Explorer Protected Mode Bypass Vulnerability
	Microsoft Internet Explorer 9 STYLE Object Parsing Code Execution Vulnerability
	Microsoft Internet Explorer XSLT SetViewSlave Code Execution Vulnerability
	CA Total Defense Suite Gateway Security Malformed HTTP Packet Code Execution Vulnerability
	HP Easy Printer Care XMLSimpleAccessor Class ActiveX Control Code Execution Vulnerability
	TrendMicro Control Manager CASProcessor.exe BLOB Code Execution Vulnerability
	Symantec Veritas Storage Foundation vxsvc.exe Unicode Code Execution Vulnerability
	HP iNode Management Center iNodeMngChecker.exe Code Execution Vulnerability