[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Hobbit Security Issue?

To: hobbit (at) hswn.dk
Subject: Hobbit Security Issue?
From: "Gore, David W (David)" <david.gore (at) verizonbusiness.com>
Date: Thu, 22 Mar 2007 17:36:16 +0000
Thread-index: AcdsqJgJV6OTVpvVTV2OTpMkST4zRg==
Thread-topic: Hobbit Security Issue?

Perhaps someone more familiar with security can help me with this?  Or
perhaps it's a false positive?  We scan or hosts for security and my
score just went up more than three fold.  This was the worst offender:

wpoison (nasl version)
Long Desc: The following URLs seem to be vulnerable to BLIND SQL
injection
techniques :
/hobbit-cgi/bb-hostsvc.sh?-='+AND+'b'>'a&HOST=myhost&SERVICE=info

Obviously Hobbit doesn't use SQL, but we do have a running mysql
instance running on the host.  Our mysql instance is not used by hobbit.
Any suggestions?

Our mysql instance:

mysql  Ver 14.12 Distrib 5.0.27, for redhat-linux-gnu (i686) using
readline 5.0

~David

Follow-Ups:
- Re: [hobbit] Hobbit Security Issue?
  - From: Henrik Stoerner
- Re: [hobbit] Hobbit Security Issue?
  - From: Stewart Larsen

Prev by Date: Re: [hobbit] hobbit on Solaris 10 non-global Zone
Next by Date: Re: [hobbit] Hobbit Security Issue?
Previous by thread: Re: [hobbit] hobbit on Solaris 10 non-global Zone
Next by thread: Re: [hobbit] Hobbit Security Issue?
Index(es):
- Date
- Thread