HTTP: SunPS iRunbook 2.5.2 Directory Traversal
This signature detects attempts to exploit a vulnerability in SunPS iRunbook 2.5.2. Attackers can use the script none.php to view any file on the remote Web server.
Extended Description
Sun i-Runbook is a single point of technical and administration management for Sun production environments. i-Runbook provides a web interface. i-Runbook can be led to disclose the contents of a known resource. This is accomplished by submitting a specially crafted request with the absolute path to a known directory or file. This issue could result in the disclosure of sensitive information.
Affected Products
Sun i-runbook
Short Name
HTTP:CGI:SUNPS-IRUNBOOK
Severity
Minor
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
2.5.2 CVE-2002-1033 Directory SunPS Traversal bid:5209 iRunbook
Release Date
12/17/2004
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Sun
CVSS Score
5.0