Sambar Server 4.1 Beta - Admin Access

EDB-ID:

20570

CVE:





Platform:

CGI

Date:

1998-06-10


source: https://www.securityfocus.com/bid/2255/info

'dumpenv.pl' is a utility that will display environment information on which the server resides, this information could include the server software version being used, directory settings and path information.

The default authentication credentials for the administrator account in a Sambar Server is Username: admin with the password left blank. Once a remote user has gained knowledge of the path to log into the admin account, it is possible for the user to login to the server via an http request. This unauthorized access is gained providing that the default settings have not been changed.

Successful exploitation of this vulnerability could lead to complete compromise of the host 

The following will display environment information:

http://target/cgi-bin/dumpenv.pl

The following is an example of the path to login as admin:

http://target/session/adminlogin?RCpage=/sysadmin/index.stm