Zeus Webserver可能的远程根妥协

漏洞信息详情

Zeus Webserver可能的远程根妥协

• CNNVD编号：CNNVD-199910-045
• 危害等级： 超危
  
  
• CVE编号：
  CVE-1999-0883
  
• 漏洞类型：
  
  
  访问验证错误
  
• 发布时间：
  
  1999-10-25
  
• 威胁类型：
  
  
  远程
  
• 更新时间：
  
  2005-05-02
  
• 厂        商：
  
  zeus_technologies
• 漏洞来源：
  This was discovere…

Zeus网络服务器存在漏洞。远程攻击者可以通过制定搜索引擎选项中的文件名来读取任意文件。

Zeus Technology has released new binaries for their webserver which are not vulnerable to this problem. They are available at the location below:
http://support.zeus.co.uk/news/exploit.html
Users who are upgrading from version 3.1.9 or earlier should follow the upgrade steps at the following URL:
http://support.zeus.co.uk/faq/entries/z33migrate.html
It should be noted that Zeus responded to and fixed this problem within 3 hours of it being posted to BugTraq/on Security Focus.

来源: XF
名称: zeus-remote-root(3380)
链接:http://xforce.iss.net/xforce/xfdb/3380

来源: BID
名称: 742
链接:http://www.securityfocus.com/bid/742

来源: OSVDB
名称: 1126
链接:http://www.osvdb.org/1126