Title: Zeus Webserver Possible Remote root Compromise
Severity: HIGH
Description:
There are a number of vulnerabilities in the Zeus Web Server, that if carried out in combination can lead to a remote root compromise.
The Zeus Web Server gives its users the option to use a pre-built search CGI program for their virtual website. The program accepts (as its http form variables) server filesystem paths as its arguments. Because of this, it is possible to display any file that the server has access to. Thus, by altering parameters to "search", an attacker can obtain the password hash for the admin user by displaying the configuration file.
Once a password for the admin user is cracked, it is possible to execute aribtrary commands through the web based configuration UI as root (which the configuration UI runs as).
Affected Products:
- Zeus Technologies Zeus Web Server 3.3.1
- Zeus Technologies Zeus Web Server 3.3.2
References:
- Zeus Technology: Zeus Technology Homepage
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
