header-logo
Suggest Exploit
vendor:
NetWare Web Server
by:
SecurityFocus
5
CVSS
MEDIUM
Arbitrary File Retrieval
22
CWE
Product Name: NetWare Web Server
Affected Version From: 2.x
Affected Version To: 2.x
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2001

Novell NetWare Web Server 2.x convert.bas Script Arbitrary File Retrieval Vulnerability

Novell NetWare Web Server 2.x versions came with a CGI written in BASIC called convert.bas. This script allows retrieval of files outside of the normal web server context. This can be accomplished simply by submitting the filename and path as a parameter to the script, using relative paths (../../) to traverse directories. Access may or may not be limited to the SYS: volume.

Mitigation:

Restrict access to the convert.bas script and ensure that it is not accessible from the web server.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/2025/info

Novell NetWare Web Server 2.x versions came with a CGI written in BASIC called convert.bas. This script allows retrieval of files outside of the normal web server context. This can be accomplished simply by submitting the filename and path as a parameter to the script, using relative paths (../../) to traverse directories. Access may or may not be limited to the SYS: volume. 

http://targethost/scripts/convert.bas?../../anything/you/want/to/view

Navigation

Suggest Exploit

Services By CQR