Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

This site is deprecated. Please CLICK HERE for latest updates

Short Name

 HTTP:IIS:ASP-DOT-NET-BACKSLASH

Severity

 Minor

Recommended

 No

Category

 HTTP

Keywords

 IIS ASP.Net Directory Authentication Bypass

Release Date

 2004/10/13

Update Number

 1213

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

HTTP: IIS ASP.Net Directory Authentication Bypass


This signature detects backslash (\) characters in the URL portion of an HTTP request. Attackers can use a backslash as a directory separator instead of the normal forward slash (/) to bypass the Microsoft IIS ASP.Net authentication capabilities and access protected resources. Note: A poorly configured Web server can also display a backslash in a non-malicious URL request.

Extended Description

Microsoft ASP.NET is reported prone to a remote information-disclosure vulnerability because the application fails to properly secure documents when handling malformed URI requests. An attacker may leverage this issue to bypass authentication required to access files in secured directories.

Affected Products

  • Microsoft asp.net 1.0
  • Microsoft asp.net 1.1
  • Microsoft asp.net
  • Microsoft .net_framework 1.0
  • Microsoft .net_framework 1.0 SP1
  • Microsoft .net_framework 1.0 SP2
  • Microsoft .net_framework 1.0 SP3
  • Microsoft .net_framework 1.1
  • Microsoft .net_framework 1.1 SP1

References

  • BugTraq: 11342
  • CVE: CVE-2004-0847
  • URL: http://support.microsoft.com/?kbid=887459
  • URL: http://www.microsoft.com/technet/security/bulletin/ms05-004.mspx
  • URL: http://www.us-cert.gov/cas/techalerts/TA05-039A.html

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out