EmuLive Server4多个安全漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1108186 漏洞类型 未知
发布时间 2004-09-21 更新时间 2006-04-21
CVE编号 CVE-2004-1695 CNNVD-ID CNNVD-200409-052
漏洞平台 CGI CVSS评分 10.0
|漏洞来源
https://www.exploit-db.com/exploits/24619
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200409-052
|漏洞详情
EmuLiveServer4是一款实时媒体广播软件。结合其他Emulive产品和建立类似数字电视的软件。EmuLiveServer4实现存在多个安全问题,远程攻击者可以利用这些漏洞对系统进行未授权访问及进行拒绝服务攻击。未授权管理访问问题:EmuLiveServer4包含远程管理接口,提交如下特殊的URL,可以绕过验证以管理员权限访问应用系统:http://localhost//PUBLIC/ADMIN/INDEX.HTM拒绝服务攻击问题:EmuLiveServer4在处理远程用户对66端口访问处理存在问题,攻击者连接此端口,快速输入8个以上的回车符,可导致应用程序崩溃。
|漏洞EXP
source: http://www.securityfocus.com/bid/11226/info

Reportedly EmuLive Server4 is affected by an authentication bypass vulnerability and a denial of service vulnerability. These issues are due to an access validation issue and a failure to handle exceptional conditions.

An attacker may leverage the authentication bypass issue to gain unauthorized access to the administrator scripts of the affected application, facilitating manipulation of various server settings. The denial of service issue may be exploited to cause the affected computer to freeze, denying service to legitimate users.

http://www.example.com//PUBLIC/ADMIN/INDEX.HTM

Note that the '//' after the 'http://www.example.com' is where a session ID would be presented, by providing no data between these slashes a NULL session ID is used to authenticate the attacker.
|参考资料

来源:XF
名称:emuliveserver4-url-gain-access(17450)
链接:http://xforce.iss.net/xforce/xfdb/17450
来源:BID
名称:11226
链接:http://www.securityfocus.com/bid/11226
来源:www.gulftech.org
链接:http://www.gulftech.org/?node=research&article_id=00051-09202004
来源:SECUNIA
名称:12616
链接:http://secunia.com/advisories/12616
来源:BUGTRAQ
名称:20040921MultipleVulnerabilitiesInEmuLiveServer4
链接:http://marc.theaimsgroup.com/?l=bugtraq&m=109577497718374&w=2