Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS)

S-172: Vulnerability in WebDAV Mini-Redirector

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Security Advisories (RSS) S-172: Vulnerability in WebDAV Mini-Redirector
# 1  
Old 02-12-2008
S-172: Vulnerability in WebDAV Mini-Redirector
A remote code execution vulnerability exists in the way that the WebDAV Mini-Redirector handles responses. The risk is HIGH. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts.


More...
Login or Register to Ask a Question

Previous Thread | Next Thread

9 More Discussions You Might Find Interesting

1. Web Development

Sending file to WebDav Server

Hi All, I am using a webdav server host name : abc.xyz.com.ak username : user123 password : password123 port : 80 I need to send files stored in my windows system to the server, any idea how to do it. I dont know how to create a url in linux for webdav server using details. (2 Replies)
Discussion started by: prakhar_dubey
2 Replies

2. UNIX for Advanced & Expert Users

Write to file without redirector

Hello Shell scripting Gurus, I am writing a script to be executed from Oracle Scheduler. This script works flawlessly when executed at the shell prompt, but fails when executed from Oracle Scheduler due to the issues explained in the Oracle Link below: Guide to External Jobs on 10g with... (4 Replies)
Discussion started by: abby007
4 Replies

3. Shell Programming and Scripting

Webdav automation

Hi, I am required to automate file transfer to a Sharepoint Collection, I have failed in mounting the webdav as a file system using davfs2 so I am investigating Curl and Cadaver. Cadaver is probably the easiest solution, I can successfully connect and transfer files. However can anyone advise... (2 Replies)
Discussion started by: mcclunyboy
2 Replies

4. OS X (Apple)

Permissions trouble with WebDav

Hello! I need some advice about using WebDav in Mac OS 10.5 My problem is that I mount a WebDav folder in the hard drive pointing to a webdav directory service running under apache (it's Alfresco, if you know it) but the permissions of this directory, when mounted, are only for the user who... (0 Replies)
Discussion started by: osksp
0 Replies

5. Shell Programming and Scripting

shell script to change ip addess to 0.0.0.0 from 172.29.1.1 to 17.29.2.245

hello, i have a file in which lines like this are to ve replaced with lines like {172.29.1.55 mn55.mgmt.yuva.param # }should change to {0.0.0.0 mn55.mgmt.yuva.param #noconn Fallowing are the lines example lines are in a file in the same sequence to be converted : 172.29.1.49 ... (1 Reply)
Discussion started by: pankajd
1 Replies

6. Shell Programming and Scripting

upload file to webdav server

Hi all i have a such question this is my shell script my script must upload file to webdav server ////////////////////////////////////////////////////////////////////////////////////////////////////////////// #!/bin/sh ###... (1 Reply)
Discussion started by: knut
1 Replies

7. UNIX for Dummies Questions & Answers

Serial port redirector

I need make serial data from virtual serial ports available on a TCP/IP network. For communications with hardware COM ports to send and receive serial data over a local network or the Internet. Example: POSIX machine (/dev/ttyS0) <--- TCP/IP ---> Windows machine COM1 Please help! I try use... (0 Replies)
Discussion started by: steel98
0 Replies

8. Shell Programming and Scripting

Please help with Webdav transfer script

I need help on a script that syncs a directory with a webdav directory. For example I have the folders: ./upload/ ./upload/client ./upload/client/department ./upload/client2 ./upload/client2/department each of these folders contain docs that need to goto the webdav. also the client names... (1 Reply)
Discussion started by: brazen1445
1 Replies

9. UNIX for Advanced & Expert Users

UNIX Serial Port Redirector

Hi , I need to have an application where in I am able to create a virtual Serial port on a UNIX machine for a remote device which is accessible by a IP address and a port number (by terminal server). Both the machine and the remote device are on the same network. So after this application is... (1 Reply)
Discussion started by: naveenkj
1 Replies
Login or Register to Ask a Question

LEARN ABOUT X11R4

redirector

FBB::Redirector(3bobcat)				   System Level File Redirection				  FBB::Redirector(3bobcat)

NAME

       FBB::Redirector - Redirects a file descriptor to another descriptor

SYNOPSIS

       #include <bobcat/redirector>
       Linking option: -lbobcat

DESCRIPTION

       Objects	of  the  class FBB::Redirector set up a system level file redirection, using file descriptors rather than streams. FBB::Redirector
       objects are effectively wrappers around the dup2(2) system call. System level redirection allows the programmer to send	output	to,  e.g.,
       the  standard output stream, which actually appears at another stream (e.g., the standard error). It is a stronger form of redirection than
       the standard one offered by C++, which uses std::streambuf redirection, and which is, because of that, bound to the program's scope. System
       level  redirection, on the other hand, is applied at the system level, allowing the programmer to redirect standard streams when starting a
       program. For example, the standard error is commonly written to the standard output using an invocation like program 2>&1.

       When constructing FBB::Redirector objects a file descriptor is required, and another file descriptor is required when  defining	the  redi-
       rection.  Formally,  file  descriptors  are not defined in C++, but they are available in many types of operating systems. In those systems
       each `file' has an associated `file descriptor'. A file descriptor is an int, which is an index into the program's file	allocation  table,
       maintained by the system. Another type of well-known entities which are file descriptors are sockets.

       Well-known filedescriptors (defined in, e.g., unistd.h) having fixed values are
	0 (STDIN_FILENO), representing the standard input stream (std::cin);
	1, (STDOUT_FILENO), representing the standard output stream (std::cout);
	2, (STDERR_FILENO), representing the standard error stream (cerr); Notes:

       o      System-level redirection outlives system calls from the execl(3) family.

       o      Destroying a FBB::Redirector object does not undo the redirection set up by that object.

NAMESPACE

       FBB
       All constructors, members, operators and manipulators, mentioned in this man-page, are defined in the namespace FBB.

INHERITS FROM

       -

ENUM

       The enumeration StandardFileno holds the following values:

       o      STDIN(0)

       o      STDOUT(1)

       o      STDERR(2) These values may be used to set up a redirection instead of the plain numbers.

CONSTRUCTORS

       o      Redirector(int fd):
	      This constructor expects the file descriptor of the file that will be used in the program to access (read, write) another file.  The
	      copy constructor is available.

MEMBER FUNCTIONS

       o      void swallow(int otherFd) const:
	      This member function expects the file descriptor of the file that will be redirected. Redirection means that the descriptor provided
	      to  the constructor will be used when referring to the file descriptor provided to the swallow() member (see the example below).	If
	      the redirection fails an FBB::Errno object is thrown, whose which() member shows the system's errno value set by the failing dup2(2)
	      function.

       o      void through(int otherFd) const:
	      This  member  function  also redirects otherFd to the file descriptor provided to the constructor, but will also close the construc-
	      tor's file descriptor. After calling through the file referred to by the constructor's file descriptor can  only	be  accessed  from
	      otherFd. The file originally referred to by otherFd is not accessible anymore from the current process.

EXAMPLE

	   #include <iostream>
	   #include <bobcat/redirector>

	   using namespace std;
	   using namespace FBB;

	   int main()
	   {
	       Redirector redirector(Redirector::STDOUT);
	       redirector.swallow(Redirector::STDERR);

	       cerr << "This appears at the standard output stream
"
		       "use `a.out > /dev/null' to suppress this message" << endl;
	   }

FILES

       bobcat/redirector - defines the class interface

SEE ALSO

       bobcat(7), errno(3bobcat), dup2(2), execl(3)

BUGS

       None Reported.

DISTRIBUTION FILES

       o      bobcat_3.01.00-x.dsc: detached signature;

       o      bobcat_3.01.00-x.tar.gz: source archive;

       o      bobcat_3.01.00-x_i386.changes: change log;

       o      libbobcat1_3.01.00-x_*.deb: debian package holding the libraries;

       o      libbobcat1-dev_3.01.00-x_*.deb: debian package holding the libraries, headers and manual pages;

       o      http://sourceforge.net/projects/bobcat: public archive location;

BOBCAT

       Bobcat is an acronym of `Brokken's Own Base Classes And Templates'.

COPYRIGHT

       This is free software, distributed under the terms of the GNU General Public License (GPL).

AUTHOR

       Frank B. Brokken (f.b.brokken@rug.nl).

libbobcat1-dev_3.01.00-x.tar.gz 				     2005-2012						  FBB::Redirector(3bobcat)