|
|
>> ExtremeZ-IP File Server Denial of Service and Directory Traversal Issues
|
Multiple vulnerabilities have been identified in ExtremeZ-IP File Server, which could be exploited by attackers to cause a denial of service or gain knowledge of sensitive information.
The first issue is caused by an error in the SLP service when handling specially crafted requests, which could be exploited by remote attackers to crash a vulnerable server.
The second vulnerability is caused by an error in the AFP service when handling specially crafted requests, which could be exploited by remote attackers to crash a vulnerable server.
The third issue is caused by an input validation error in the embedded HTTP server (port 8081/TCP) that does not validate user-supplied requests, which could be exploited by malicious people to download arbitrary files (gif, png, jpg, xml, ico, zip and html) from a vulnerable server via directory traversal attacks.
Affected Products
ExtremeZ-IP File Server version 5.1.2x15 and prior
Solution
Apply ExtremeZ-IP 5.1.3x03 hotfix :
http://www.grouplogic.com/files/ez/hot/hotFix51.cfm
References
http://www.vupen.com/english/advisories/2008/0485
http://aluigi.altervista.org/adv/ezipirla-adv.txt
Credits
Vulnerabilities reported by Luigi Auriemma.
ChangeLog
2008-02-11 : Initial release
2008-02-20 : Updated Solution
Vulnerability Management
Subscribe to VUPEN VNS and receive real-time e-mail and SMS alerts when new advisories or patches relevant to your systems and network configurations are available.
Feedback
If you have additional information or corrections for this security advisory please submit them via our contact form. | |
|
