Mono XSP mod_mono模块目录遍历和源码信息泄露漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1111870 漏洞类型 输入验证
发布时间 2006-12-20 更新时间 2007-01-26
CVE编号 CVE-2006-6104 CNNVD-ID CNNVD-200612-482
漏洞平台 Linux CVSS评分 5.0
|漏洞来源
https://www.exploit-db.com/exploits/29302
https://www.securityfocus.com/bid/21687
https://cxsecurity.com/issue/WLB-2006120150
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200612-482
|漏洞详情
MonoXSP是Mono框架下所提供的轻量级WEB服务器。Mono/C#Web服务器xsp组件的mod_mono模块存在目录遍历漏洞,远程攻击者可以利用此漏洞获取服务器相关的敏感信息。如果攻击者能够在HTTP请求后附带%20(空格字符)的话,就会导致在返回结果中包含服务端应用程序的源码。
|漏洞EXP
source: http://www.securityfocus.com/bid/21687/info

XSP is prone to a source code information-disclosure vulnerability because it fails to properly sanitize user-supplied input. 

An attacker can exploit this vulnerability to retrieve arbitrary files from the vulnerable system in the context of the webserver process. Information obtained may aid in further attacks.

http://www.example.com/app/Default.aspx%20
|受影响的产品
Ubuntu Ubuntu Linux 6.10 sparc Ubuntu Ubuntu Linux 6.10 powerpc Ubuntu Ubuntu Linux 6.10 i386 Ubuntu Ubuntu Linux 6.10 amd64 Ubuntu Ubuntu Linux 6.06 LTS sparc Ubuntu Ubu
|参考资料

来源:UBUNTU
名称:USN-397-1
链接:http://www.ubuntu.com/usn/usn-397-1
来源:BID
名称:21687
链接:http://www.securityfocus.com/bid/21687
来源:MANDRIVA
名称:MDKSA-2006:234
链接:http://www.mandriva.com/security/advisories?name=MDKSA-2006:234
来源:VUPEN
名称:ADV-2006-5099
链接:http://www.frsirt.com/english/advisories/2006/5099
来源:SECUNIA
名称:23462
链接:http://secunia.com/advisories/23462
来源:SECUNIA
名称:23435
链接:http://secunia.com/advisories/23435
来源:SECUNIA
名称:23432
链接:http://secunia.com/advisories/23432
来源:BUGTRAQ
名称:20061220MonoXSPASP.NETServersourcecodedisclosurevulnerability
链接:http://www.securityfocus.com/archive/1/archive/1/454962/100/0/threaded
来源:MISC
链接:http://www.eazel.es/advisory007-mono-xsp-source-disclosure-vulnerability.html
来源:SECTRACK
名称:1017430
链接:http://securitytracker.com/id?1017430
来源:SREASON
名称:2082
链接:http://securityreason.com/securityalert/2082
来源:GENTOO
名称:GLSA-200701-12
链接:http://security.gentoo.org/glsa/glsa-200701-12.xml
来源:SECUNIA
名称:23779
链接:http://secunia.com/advisories/23779
来源:SECUNIA
名称: