HTTP: SuperScout Email Filter Administration User Database Access
This signature detects attempts to view a Web page in the Administration interface for the SuperScout Email Filter. Because SuperScout does not check permissions correctly, attackers with access to the URL http://<ipaddress>/web/usermgr/userlist.asp can obtain usernames and unencrypted passwords.
Extended Description
SurfControl SuperScout WebFilter is web filtering software for Microsoft Windows operating systems. SurfControl SuperScout WebFilter includes a remotely accessible reporting service. It has been reported that SuperScout WebFilter insecurely stores some types of information. The reports server included as part of the SuperScout WebFilter package stores sensitive information in a publicly accessible, unrestricted directory. A remote user could gain access to user credentials.
Affected Products
Surfcontrol superscout_web_filter_for_windows_nt/2000
References
BugTraq: 5856
CVE: CVE-2002-1530
URL: http://www.surfcontrol.com http://securityvulns.com/docs3608.html http://www.ftusecurity.com
Short Name
HTTP:PKG:SUPERSCOUT-USERLIST
Severity
Minor
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
Access Administration CVE-2002-1530 Database Email Filter SuperScout User bid:5856
Release Date
04/22/2003
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Surfcontrol
CVSS Score
5.0