HTTP: Xerox DocuShare Upload Helper Information Disclosure
This signature detects attempts to exploit a known vulnerability in the Xerox DocuShare Upload Helper Utility. DocuShare 2.2 Workgroup (Build 180) and earlier versions are vulnerable. Attackers can log in as a unauthenticated guest user to obtain information about the internal network that can be used to further compromise a network.
Extended Description
Since DocuShare allows anonymous users to upload files by default, an unauthenticated party could log in to the system and upload malicious files, including Trojan horse and backdoor programs. These programs could later be downloaded and run by unsuspecting legitimate users of the DocuShare system, possibly leading to a complete compromise of the host(s) where the malicious documents were opened.
References
URL: http://archives.neohapsis.com/archives/bugtraq/2002-10/0041.html
Short Name
HTTP:INFO:XEROX-DS-INFO
Severity
Warning
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
Disclosure DocuShare Helper Information Upload Xerox
Release Date
04/22/2003
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Occasionally