Title: Novell Netware Enterprise Web Server Multiple Vulnerabilities
Severity: HIGH
Description:
Multiple vulnerabilities have been identified in Novell Netware Enterprise Web Server that may allow an attacker to carry out cross-site scripting attacks, disclose sensitive information, and load potentially malicious files on a vulnerable server.
It has been reported that the software may be prone to multiple cross-site scripting vulnerabilities that may allow a remote attacker to launch cross-site scripting attacks. Reportedly, the software contains various variables that are prone to these attacks due to insufficient sanitization of user-supplied data. Various proof of concepts including vulnerable variables have been provided in the report. Successful exploitation of these issues may allow an attacker to steal cookie based authentication credentials and carry out other attacks.
An information disclosure issue has been identified in the software as well. It has been reported that a remote attacker may be able to view sensitive data such as internal IP addresses and other unspecified server information. This attack may be carried out by accessing certain files such as snoop.jsp, SnoopServlet, env.bas, and lcgitest.nlm. Successful exploitation of this issue may allow an attacker to gain access to sensitive data that could be used to launch further attacks against a system.
Another issue may allow an attacker to access directory listings on a vulnerable server. It has been reported that this issue may be exploited by accessing various pages on a vulnerable server. Successful exploitation of this issue may allow an attacker to gain access to sensitive data that could be used to launch further attacks against a system. A path disclosure issue may also exist in the software that may allow an attacker to gain sensitive information about the file system that could aid in launching more direct attacks against the system. This issue may be exploited via a malicious URI request including '\/' characters.
Finally, it has been reported that an attacker may be able to load Microsoft Hypertext Template (.htt) files to a server. This issue may allow an attack to upload potentially malicious files to the server that may corrupt other files.
These issues are reported to affect Netware Enterprise Web Server 5.1 and 6.0. Other versions may be affected as well.
These issues are currently undergoing further analysis. This cumulative BID will be separated into individual entries when analysis is complete.
Affected Products:
- Novell NetWare Web Server 5.1.0
- Novell NetWare Web Server 6.0.0
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
