Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 SCAN:MISC:HTTP:ALIBABA

Severity

 Info

Recommended

 No

Category

 SCAN

Keywords

 cgi scan alibaba.pl

Release Date

 2004/12/08

Update Number

 1213

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

SCAN: alibaba.pl access


This signature detects attempts to access alibaba.pl, a PERL script with multiple vulnerabilities.

Extended Description

There are several CGI programs that ship with the Alibaba webserver. Many of these do not do proper input handling, and therefore will allow requests for access to files outside of normal or safe webserver practice. This results in various situations where an attacker can view, overwrite, create and delete files anywhere on the server.

Affected Products

  • Computer Software Manufaktur Alibaba 2.0.0

References

  • BugTraq: 770
  • CVE: CVE-1999-0885
  • URL: http://www.snort.org/snort-db/sid.html?sid=1508

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out