Short Name |
HTTP:PKG:NAI-PGP-ADMIN-ACCESS-1 |
---|---|
Severity |
Minor |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
NAI PGP Keyserver Web Admin Access (1) |
Release Date |
2003/04/22 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects attempts to exploit a known vulnerability against PGP Keyserver. Attackers can perform administrative tasks without server authentication.
PGP Keyserver is a commercially available encryption software package from Network Associates. It is designed as a PGP public key management system, with features such as LDAP. A problem in the PGP key server makes it possible for remote users to gain administrative access to the interface. Typical administration of the interface passes commands through the http://www.example.com/keyserver/cgi-bin/console.exe?page_size=... and http://www.example.com/keyserver/cgi-bin/cs.exe?action=... commands. These commands, however, may be directly accessed without authentication from the user. This makes it possible for a remote user to deny service to a legitimate user of the system. This could also potentially result in a malicious user replacing PGP Keys with malicious keys, and gaining access to sensitive information.