Detections
Analytics

Xerver < 4.20 Multiple Vulnerabilities

medium Nessus Plugin ID 20062

Language:

Synopsis

The remote web server is affected by multiple vulnerabilities.

Description

The remote host is running a version of Xerver prior to 4.20. It is, therefore, affected by multiple vulnerabilities :

 - An information disclosure vulnerability exists that is triggered when a '.' is appended to the filename of a script in a URL. A remote attacker can exploit this to disclose the source code of the script. (CVE-2005-3293)

 - An information disclosure vulnerability exists that is triggered when a specially crafted HTTP request ending with a null character (%00) at the end is sent. A remote attacker can exploit this to disclose directly listings.
 (CVE-2005-3293)

 - A cross-site scripting vulnerability exits due to an unspecified flaw. A remote attacker can exploit this, via a specially crafted URL containing a null character (%00) followed by malicious code, to execute arbitrary script code in a user's browser. (CVE-2005-4774)

Solution

Upgrade to Xerver 4.20 or later.

See Also

http://securitytracker.com/alerts/2005/Oct/1015079.html

Plugin Details

Severity: Medium

ID: 20062

File Name: xerver_420.nasl

Version: 1.25

Type: remote

Family: Web Servers

Published: 10/20/2005

Updated: 4/11/2022

Configuration: Enable thorough checks

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 4.2

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 3.9

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Vulnerability Information

CPE: cpe:/a:xerver:xerver

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 10/19/2005

Reference Information

CVE: CVE-2005-3293, CVE-2005-4774

BID: 15135

CWE: 20, 442, 629, 711, 712, 722, 725, 74, 750, 751, 79, 800, 801, 809, 811, 864, 900, 928, 931, 990