httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Randy Terbush <ra...@zyzzyva.com>
Subject Security interest
Date Sat, 13 Jul 1996 23:41:04 GMT

------- Forwarded Message

Subject: BoS: New Mac Web Server Security Hole Discovered

Try adding /M_A_C_H_T_T_P_V_E_R_S_I_O_N

to any of the URL's at

http://www.netcraft.co.uk/Survey/Reports/960701/ALL/WebSTAR.html

and each server will leak information like

- ---
http://europa.nadc.navy.mil//M_A_C_H_T_T_P_V_E_R_S_I_O_N
- ---
WebSTAR, Copyright =A91995 Chuck Shotton,
Portions =A91995 StarNine Technologies, Inc. and its Licensors. All rights
reserved.
PowerPC (CW) version

totalCon 343, maxCon 30, listening 29, current 1, high 8, busy 0, denied 0,
timeout 0, maxMem
1140640, currMem 1117024, minMem 1090208, bytesSent 1218888, port 80,
maxTimeout 300,
verboseMessages false, disableLogging false, hideWindow false,
refuseConnections false, upSince
07/11/96:10:48, version 1.2.5(PowerPC (CW))
- --

Anyone can use this for denial of service becase this backdoor is so well
hidden it won't show up in the logs!

The vendor has not commited to an instant fix, but they have told their
users not to discuss this on public lists lest their obscurity become
unsecure.

p.s. The copyright part was their lawyer's idea!


------- End of Forwarded Message




Mime
View raw message