Provided by Aanval (Snort & Syslog Intrusion Detection and Correlation Engine) www.aanval.com
--
GEN:SID | 1:1030 |
Message | WEB-IIS search97.vts access |
Summary | This event is generated when an attempt is made to access the search97.vts file. |
Impact | Intelligence gathering, remote execution of files, denial of service. This attack can permit the viewing and execution of files on the vulnerable server. Additionally, a denial of service attack exists, allowing a remote user to shut down the Verity software. |
Detailed Information | The Verity/Search'97 software provides a search engine. A vulnerability exists with a CGI script associated with Verity software because of improper input checking. This may permit an attacker to access and execute files as well as shut down the Verity software. |
Affected Systems | Verity Search97 2.1 |
Attack Scenarios | An attacker can craft a URL to access the vulnerable search97.vts file to remotely read or execute files, or cause a denial of service. |
Ease of Attack | Simple. |
Corrective Action | Apply the appropriate patch. |
Additional References | Bugtraq http://www.securityfocus.com/bid/162 |
Rule References | bugtraq: 162 |
--
DID:552517
--
http://www.aanval.com/