Title: NAI PGP Keyserver Web Administration Interface Authentication Bypassing Vulnerability
Severity: CRITICAL
Description:
PGP Keyserver is a commercially available encryption software package from Network Associates. It is designed as a PGP public key management system, with features such as LDAP.
A problem with the key server could make it possible for remote users to compromise the integrity of posted keys. This could lead to a potential compromise public keys, and potentially sensitive information.
The problem is due to inadequate access control of executables included with the package. When the web administration interface is accessed by the key server administrator, the programs http://www.example.com/keyserver/cgi-bin/console.exe?page_size=... and http://www.example.com/keyserver/cgi-bin/cs.exe?action=... are used by the infrastructure to carry out the commands of the administrator to the interface.
However, strict authentication is not enforced on these programs. A remote user could access these programs directly, and carry out commands on the system without challenge. This could result in a denial of service situation, where the PGP Key database is removed. Worse, this could result in the placement of malicious PGP Keys, which could be exploited to gain access to sensitive email and other documents.
Affected Products:
- Network Associates PGP Keyserver 7.0.0
- Network Associates PGP Keyserver 7.0.1
References:
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
