vendor:
Search`97 Web Interface
by:
SecurityFocus
7.5
CVSS
HIGH
Remote File Access and Unauthenticated Administrative Access
264
CWE
Product Name: Search`97 Web Interface
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2002
Verity Search`97 Web Interface Vulnerabilities
Two vulnerabilities exist in Verity's Search`97 web interface to the Verity search engine. The first vulnerability is due to cgi-bin scripts, s97_cgi and s97r_cgi failing to check for the existence of certain shell meta characters. This allows an attacker to access any file on the file system. The second vulnerability is due to a lack of authentication being used to access the Verity administrative program. Any user can telnet to the appropriate port, and issue a command to shut the Verity software down.
Mitigation:
Ensure that the cgi-bin scripts are properly configured to check for the existence of certain shell meta characters. Additionally, ensure that authentication is used to access the Verity administrative program.