Title: Noah Grey Greymatter IE Bookmarklet Account Compromise Vulnerability
Severity: MODERATE
Description:
Greymatter is a web based log and journal maintenance system. It is written in Perl as a collection of CGI scripts, and should work under Linux and most other Unix platforms.
When the Greymatter 'bookmarklet' feature is enabled by a user, a Windows registry file is created. This file has a name of the form 'gmrightclick-n.reg', where n is a six digit decimal number. This file is world readable, and includes the author's username and password.
This file is deleted when Greymatter page navigation is used after the feature is enabled. However, skipping this step will allow the file to persist indefinately, prolonging the time period in which an attacker may exploit this vulnerability, allowing brute force attacks against the numbered filename. Allowing the web server to reveal directory listings may also make an attack easier to attempt.
Affected Products:
- Noah Grey Greymatter 1.2.0
- Noah Grey Greymatter 1.21.0
- Noah Grey Greymatter 1.21.0 a
- Noah Grey Greymatter 1.21.0 b
References:
- Noah Grey: Greymatter Product Homepage
- www.dangerousmonkey.com: dangerous data - 02/10/2002: ""
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
