|
|
NetcPlus SmartServer3 Weak Encryption Vulnerability
SmartServer3 is an email server designed for small networks. A design error exists in SmartServer3 which enables an authenticated user to view other users login information and possibly gain access to passwords. SmartServer3 by default intsalls in the C:\ProgramFiles\smartserver3/ directory and includes a configuration file called dialsrv.ini. This file is accessible by all Windows authenticated users and contains detailed user login information including the encrypted password. However SmartServer3 uses a weak encryption scheme which can easily be broken using a third party utility. Successful exploitation yields unauthorized access to private data. The following example of user login information found in the dialsrv.ini file is provided by Steven Alexander <steve@cell2000.net>: [USER1] realname=Carl Jones id=Carl dir=CARL pw=~:kC@nD3~: extml=0 alertport= alert= UserActive=1 MailLimit=0 MailMAxWarn=0 MailMaxSize=20 |
|
Privacy Statement |