Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2003-2021 Tenable Network Security, Inc.POPPER_MOD.NASL
HistoryMar 09, 2003 - 12:00 a.m.

popper_mod PHP Administration Script Authentication Bypass

2003-03-0900:00:00
This script is Copyright (C) 2003-2021 Tenable Network Security, Inc.
www.tenable.com
12

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.007 Low

EPSS

Percentile

80.4%

JSON

It is possible to administrate the remote popper_mod CGI by requesting the /admin directory directly.

An attacker may use this flaw to obtain the passwords of your users.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#


include('deprecated_nasl_level.inc');
include('compat.inc');

if(description)
{
 script_id(11334);
 script_version("1.18");
 script_cve_id("CVE-2002-0513");
 script_bugtraq_id(4412);
 
 script_name(english:"popper_mod PHP Administration Script Authentication Bypass");

 script_set_attribute(attribute:"synopsis", value:
"It is possible to gain administrative rights on the remote POP server.");
 script_set_attribute(attribute:"description", value:
"It is possible to administrate the remote popper_mod CGI by requesting
the /admin directory directly.

An attacker may use this flaw to obtain the passwords of your users." );
 script_set_attribute(attribute:"solution", value:
"Upgrade to the latest version." );
 script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
 script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
 script_set_attribute(attribute:"exploitability_ease", value:"No exploit is required");
 script_set_attribute(attribute:"exploit_available", value:"false");

 
 script_set_attribute(attribute:"plugin_publication_date", value: "2003/03/09");
 script_set_attribute(attribute:"vuln_publication_date", value: "2004/04/09");
 script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");
script_set_attribute(attribute:"plugin_type", value:"remote");
script_end_attributes();

 script_summary(english:"Checks if popper_mod is vulnerable");
 script_category(ACT_GATHER_INFO);
 script_copyright(english:"This script is Copyright (C) 2003-2021 Tenable Network Security, Inc.");
 script_family(english:"CGI abuses");
 script_dependencie("http_version.nasl", "webmirror.nasl");
 script_require_ports("Services/www", 80);
 script_exclude_keys("Settings/disable_cgi_scanning");
 exit(0);
}

#
# The script code starts here
#
include("global_settings.inc");
include("misc_func.inc");
include("http.inc");


port = get_http_port(default:80);

foreach dir (make_list(cgi_dirs(), "/mail"))
{
 u = dir+"/admin/";
 r = http_send_recv3(method: "GET", item: u, port:port);
 if (isnull(r)) exit(0);
 
 # The typo below is included in the software.
 if("webmail Adminstration" >< r[2])
 {
   security_hole(port, extra: strcat('\npopper_mod was found under :\n\n', build_url(port: port, qs: u), '\n'));
   break;
 }
}

Related

cve 1
nvd 1
cvelist 1
cve
cve
CVE-2002-0513
2003-04-02 05:00:00
nvd
nvd
CVE-2002-0513
2002-08-12 04:00:00
cvelist
cvelist
CVE-2002-0513
2003-04-02 05:00:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.007 Low

EPSS

Percentile

80.4%

JSON
Related for POPPER_MOD.NASL
cve1nvd1cvelist1