Novell NetWare远程perl版本泄露漏洞发布时间:2002-08-28 更新时间:2002-08-28 严重程度:低 威胁程度:服务器信息泄露 错误类型:设计错误 利用方式:服务器模式 BUGTRAQ ID:5521 受影响系统 Novell Netware 5.1 SP4详细描述 攻击者可以执行perl -v参数,而导致泄露PERL版本,具体细节没有公布。 测试代码 无 解决方案 升级程序: Novell Netware 5.1 SP4: Novell Upgrade perl5002.exe http://support.novell.com/servlet/filedownload/ftf/perl5002.exe/ Free registration is required. Novell Netware 5.1: Novell Upgrade perl5002.exe http://support.novell.com/servlet/filedownload/ftf/perl5002.exe/ Free registration is required. Novell Netware 6.0 SP1: Novell Upgrade perl5002.exe http://support.novell.com/servlet/filedownload/ftf/perl5002.exe/ Free registration is required. Novell Netware 6.0: Novell Upgrade perl5002.exe http://support.novell.com/servlet/filedownload/ftf/perl5002.exe/ Free registration is required. 相关信息 Rain Forrest Puppy <rfp@wiretrip.net>. 参考:http://online.securityfocus.com/advisories/4410 http://support.novell.com/security-alerts/ |
