ProCheckUp Identifies Multiple Vulnerabilities in Netscape Enterprise
CERT have now published details of the vulnerabilities discovered by Internet Security Company ProCheckUp Ltd in Netscape Enterprise Server.
The first vulnerability discovered is a remotely exploitable DoS attack on Sun Netscape Enterprise 4.0 to 4.1 web servers, running on the Windows operating system. Essentially, remote attackers by entering a simple command within their web browser can cause the server to crash. The mitigating factor is that web publishing has to be enabled, however this is quite common.
The second vulnerability within Sun Netscape Enterprise 4.0 to 4.1 on all platforms, exists a command to force an authentication session. This is not a severe weakness, however it may allow attackers to perform brute force password cracking on a site which has no authentication pages. It is a problem as it provides an unpublished feature, which would be unknown to the web server administrators or designers.
It should be noted that even though Sun Netscape servers are not as popular as Apache or IIS servers, they are commonly used by businesses running high-end e-commerce or banking sites.
Further details of these vulnerabilities can be found at:
www.procheckup.com/vuln.html
www.kb.cert.org/vuls/id/191763
www.kb.cert.org/vuls/id/985347