SkipNavigation
Home | FAQ | Contact | Privacy Policy
US-CERT
American Flag
  Vulnerability
Notes
Database

Search Vulnerability Notes

Vulnerability Notes Help Information


 
 View Notes By
  Name

ID Number

CVE Name

Date Public

Date Published

Date Updated

Severity Metric
 Other Documents
  Technical Alerts

Technical Bulletins

Alerts

Security Tips

Vulnerability Note VU#245081

Accoria Rock Web Server contains multiple vulnerabilities

Overview

Accoria Web Server contains multiple vulnerabilities that collectively could allow an attacker to execute commands through the administration interface.

I. Description

The Accoria web server, also known as Rock Web Server, contains several cross-site scripting (XSS) and cross-site request forgery (XSRF) vulnerabilities. Directory traversal and format string vulnerabilities exist as well. The getenv sample code contains an XSS vulnerability when viewed by Internet Explorer 6 or other web browsers that do not follow RFC 2616 Section 7.2.1. Generated cookies appear to be weak and predictable, which may allow an attacker to bypass authentication.

Further details are available from the IOActive security advisory.

II. Impact

A remote and unauthenticated attacker may be able to execute commands in the context of the web server administrator.

III. Solution

Apply an update

The vendor recommends all users upgrade to version 1.5.2 or later.

Restrict access

Appropriate firewall rules should be set up to limit access to the web server's administration interface to only trusted sources.

XSRF protection

To avoid XSRF attacks, do not click on links from untrusted sources while logged into the administration interface.

Vendor Information

VendorStatusDate NotifiedDate Updated
Accoria NetworksAffected2010-06-22

References

http://www.ioactive.com/pdfs/AccoriaWebServer.pdf
http://tools.ietf.org/html/rfc2616#section-7.2.1

Credit

Thank you to Ilja van Sprundel of IOActive for researching and reporting these vulnerabilities.

This document was written by Jared Allar.

Other Information

Date Public:2010-05-19
Date First Published:2010-06-01
Date Last Updated:2010-06-22
CERT Advisory: 
CVE-ID(s): 
NVD-ID(s): 
US-CERT Technical Alerts: 
Metric:3.10
Document Revision:24

If you have feedback, comments, or additional information about this vulnerability, please send us email.
 

 
Page Corner Image
Produced 2010 by US-CERT, a government organization
Disclaimers and copyright information
Get a PDF Reader