NEWLOG NetSupport Manager目录遍历漏洞

发布时间：2002-03-25
更新时间：2002-03-25
严重程度：中
威胁程度：远程非授权文件存取
错误类型：输入验证错误
利用方式：服务器模式

BUGTRAQ ID：4348

受影响系统

NEWLOG NetSupport Manager 5.5
   - Microsoft Windows 2000 Advanced Server 0.0
   - Microsoft Windows 2000 Advanced Server 0.0SP1
   - Microsoft Windows 2000 Advanced Server 0.0SP2
   - Microsoft Windows 2000 Datacenter Server 0.0
   - Microsoft Windows 2000 Datacenter Server 0.0SP1
   - Microsoft Windows 2000 Datacenter Server 0.0SP2
   - Microsoft Windows 2000 Professional 0.0
   - Microsoft Windows 2000 Professional 0.0SP1
   - Microsoft Windows 2000 Professional 0.0SP2
   - Microsoft Windows 2000 Server 0.0
   - Microsoft Windows 2000 Server 0.0SP1
   - Microsoft Windows 2000 Server 0.0SP2
   - Microsoft Windows 2000 Terminal Services 0.0
   - Microsoft Windows 2000 Terminal Services 0.0SP1
   - Microsoft Windows 2000 Terminal Services 0.0SP2
   - Microsoft Windows 95 0.0
   - Microsoft Windows 98 0.0
   - Microsoft Windows ME 0.0
   - Microsoft Windows NT Enterprise Server 4.0
   - Microsoft Windows NT Enterprise Server 4.0SP1
   - Microsoft Windows NT Enterprise Server 4.0SP2
   - Microsoft Windows NT Enterprise Server 4.0SP3
   - Microsoft Windows NT Enterprise Server 4.0SP4
   - Microsoft Windows NT Enterprise Server 4.0SP5
   - Microsoft Windows NT Enterprise Server 4.0SP6
   - Microsoft Windows NT Enterprise Server 4.0SP6a
   - Microsoft Windows NT Server 4.0
   - Microsoft Windows NT Server 4.0SP1
   - Microsoft Windows NT Server 4.0SP2
   - Microsoft Windows NT Server 4.0SP3
   - Microsoft Windows NT Server 4.0SP4
   - Microsoft Windows NT Server 4.0SP5
   - Microsoft Windows NT Server 4.0SP6
   - Microsoft Windows NT Server 4.0SP6a
   - Microsoft Windows NT Terminal Server 4.0
   - Microsoft Windows NT Terminal Server 4.0SP1
   - Microsoft Windows NT Terminal Server 4.0SP2
   - Microsoft Windows NT Terminal Server 4.0SP3
   - Microsoft Windows NT Terminal Server 4.0SP4
   - Microsoft Windows NT Terminal Server 4.0SP5
   - Microsoft Windows NT Terminal Server 4.0SP6
   - Microsoft Windows NT Terminal Server 4.0SP6a
   - Microsoft Windows NT Workstation 4.0
   - Microsoft Windows NT Workstation 4.0SP1
   - Microsoft Windows NT Workstation 4.0SP2
   - Microsoft Windows NT Workstation 4.0SP3
   - Microsoft Windows NT Workstation 4.0SP4
   - Microsoft Windows NT Workstation 4.0SP5
   - Microsoft Windows NT Workstation 4.0SP6
   - Microsoft Windows NT Workstation 4.0SP6a
NEWLOG NetSupport Manager 6.10
   - Microsoft Windows 2000 Advanced Server 0.0
   - Microsoft Windows 2000 Advanced Server 0.0SP1
   - Microsoft Windows 2000 Advanced Server 0.0SP2
   - Microsoft Windows 2000 Datacenter Server 0.0
   - Microsoft Windows 2000 Datacenter Server 0.0SP1
   - Microsoft Windows 2000 Datacenter Server 0.0SP2
   - Microsoft Windows 2000 Professional 0.0
   - Microsoft Windows 2000 Professional 0.0SP1
   - Microsoft Windows 2000 Professional 0.0SP2
   - Microsoft Windows 2000 Server 0.0
   - Microsoft Windows 2000 Server 0.0SP1
   - Microsoft Windows 2000 Server 0.0SP2
   - Microsoft Windows 2000 Terminal Services 0.0
   - Microsoft Windows 2000 Terminal Services 0.0SP1
   - Microsoft Windows 2000 Terminal Services 0.0SP2
   - Microsoft Windows 95 0.0
   - Microsoft Windows 98 0.0
   - Microsoft Windows ME 0.0
   - Microsoft Windows NT Enterprise Server 4.0
   - Microsoft Windows NT Enterprise Server 4.0SP1
   - Microsoft Windows NT Enterprise Server 4.0SP2
   - Microsoft Windows NT Enterprise Server 4.0SP3
   - Microsoft Windows NT Enterprise Server 4.0SP4
   - Microsoft Windows NT Enterprise Server 4.0SP5
   - Microsoft Windows NT Enterprise Server 4.0SP6
   - Microsoft Windows NT Enterprise Server 4.0SP6a
   - Microsoft Windows NT Server 4.0
   - Microsoft Windows NT Server 4.0SP1
   - Microsoft Windows NT Server 4.0SP2
   - Microsoft Windows NT Server 4.0SP3
   - Microsoft Windows NT Server 4.0SP4
   - Microsoft Windows NT Server 4.0SP5
   - Microsoft Windows NT Server 4.0SP6
   - Microsoft Windows NT Server 4.0SP6a
   - Microsoft Windows NT Terminal Server 4.0
   - Microsoft Windows NT Terminal Server 4.0SP1
   - Microsoft Windows NT Terminal Server 4.0SP2
   - Microsoft Windows NT Terminal Server 4.0SP3
   - Microsoft Windows NT Terminal Server 4.0SP4
   - Microsoft Windows NT Terminal Server 4.0SP5
   - Microsoft Windows NT Terminal Server 4.0SP6
   - Microsoft Windows NT Terminal Server 4.0SP6a
   - Microsoft Windows NT Workstation 4.0
   - Microsoft Windows NT Workstation 4.0SP1
   - Microsoft Windows NT Workstation 4.0SP2
   - Microsoft Windows NT Workstation 4.0SP3
   - Microsoft Windows NT Workstation 4.0SP4
   - Microsoft Windows NT Workstation 4.0SP5
   - Microsoft Windows NT Workstation 4.0SP6
   - Microsoft Windows NT Workstation 4.0SP6a

详细描述
NetSupport Manager存在目录遍历漏洞。

攻击者可以通过请求包含多个'./'字符的URL可导致泄露相关文件和目录。

测试代码
http://machinename:relevant_port/../../boot.ini

解决方案
NetSupport Manager 7.0版本不存在此漏洞。

相关信息
<watcher60@hotmail.com>.
参考：http://online.securityfocus.com/archive/1/263592
相关主页：http://www.newlock.com/pci/nsm/nsm_overview.htm

最近严重漏洞

NEWLOG NetSupport Manager目录遍历漏洞