Signature Detail
Short Name |
HTTP:PKG:NAI-PGP-ADMIN-ACCESS-2 |
|---|---|
Severity |
Medium |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
NAI PGP Keyserver Web Admin Access (2) |
Release Date |
2003/04/22 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: NAI PGP Keyserver Web Admin Access (2)
This signature detects attempts to exploit a known vulnerability against PGP Keyserver. Attackers can perform administrative tasks without server authentication.
Extended Description
PGP Keyserver is a commercially available encryption software package from Network Associates. It is designed as a PGP public key management system, with features such as LDAP. A problem in the PGP key server makes it possible for remote users to gain administrative access to the interface. Typical administration of the interface passes commands through the http://www.example.com/keyserver/cgi-bin/console.exe?page_size=... and http://www.example.com/keyserver/cgi-bin/cs.exe?action=... commands. These commands, however, may be directly accessed without authentication from the user. This makes it possible for a remote user to deny service to a legitimate user of the system. This could also potentially result in a malicious user replacing PGP Keys with malicious keys, and gaining access to sensitive information.
Affected Products
- Network Associates PGP Keyserver 7.0.0
- Network Associates PGP Keyserver 7.0.1
References
- BugTraq: 3375
- CVE: CVE-2001-1252