SecurityFocus BUGTRAQ Mailing List: BugTraqLink Number One Link Number One Link Number Two Link Number Two Link Number One Link Number One Link Number Two Link Number Two Entire Site Advisories Calendar Columnists Elsewhere Guest Feature Infocus Library Links Mailing Lists (all) -- BUGTRAQ -- FOCUS-IDS -- FOCUS-IH -- FOCUS-LINUX -- FOCUS-MS -- FOCUS-SUN -- FOCUS-VIRUS -- FORENSICS -- INCIDENTS -- PEN-TEST -- SEC JOBS -- SF NEWS -- VULN-DEV News Products Services Tools Vulns BUGTRAQ ARCHIVE [ Message Index ] [ Thread Index ][ Reply ] [ prev Msg by Date ][ next Msg by Date ] To: BugTraq Subject: [ESA-20030924-026] 'WebTool-userpass' passphrase disclosure vulnerability. Date: Sep 24 2003 1:51PM Author: EnGarde Secure Linux Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 +------------------------------------------------------------------------+ | Guardian Digital Security Advisory September 24, 2003 | | http://www.guardiandigital.com ESA-20030924-026 | | | | Package: WebTool-userpass | | Summary: Passphrase disclosure vulnerability. | +------------------------------------------------------------------------+ EnGarde Secure Linux is an enterprise class Linux platform engineered to enable corporations to quickly and cost-effectively build a complete and secure Internet presence while preventing Internet threats. OVERVIEW - -------- "Shawn" discovered and reported an SSH passphrase disclosure vulnerability in the WebTool's User Password Changer via the engarde-users mailing list. The Guardian Digital WebTool provides functionality allowing local users to generate their own SSH keys. The problem lies in the fact that the data was being passed around via an HTTP GET instead of an HTTP POST, resulting in the users passphrase being logged in /var/log/userpass.log along with the rest of the query string. Guardian Digital products affected by this issue include: EnGarde Secure Community 2 EnGarde Secure Professional v1.5 It is recommended that all users apply this update as soon as possible. SOLUTION - -------- Guardian Digital Secure Network subscribers may automatically update affected systems by accessing their account from within the Guardian Digital WebTool. To modify your GDSN account and contact preferences, please go to: https://www.guardiandigital.com/account/ REFERENCES - ---------- Guardian Digital's public key: http://ftp.engardelinux.org/pub/engarde/ENGARDE-GPG-KEY Guardian Digital Advisories: http://infocenter.guardiandigital.com/advisories/ Security Contact: security guardiandigital com - -------------------------------------------------------------------------- Author: Ryan W. Maple Copyright 2003, Guardian Digital, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2 (GNU/Linux) iD8DBQE/caF1HD5cqd57fu0RAl8AAJ0aYpXwPGiwIh0fueOJiqsl3q3wrQCeMMe6 OQlDaRmjOFTukPv35eJDG0k= =6r5d -----END PGP SIGNATURE----- Want to link to this message? Use this URL: Disclaimer, Terms & Conditions About this List Featured Lists: ARIS Users bugtraq bugtraq-es bugtraq-french NEW bugtraq-jp firewalls focus-ids focus-ih focus-linux focus-ms focus-sun focus-unix-other focus-virus forensics forensics-es honeypots incidents libnet pen-test secevents secpapers secprog sectools secureshell security-basics security-management NEW securityjobs vpn vuln-dev webappsec Newsletters: sf-news ms-secnews linux-secnews [ more . . . ] Privacy Statement Copyright © 1999-2003 SecurityFocus