HTTP_NETBASIC_SS_TRAVERSAL_EXPLOIT

  Severity: CRITICAL
  Advisory Date: FEB 04, 2011

  DESCRIPTION

The Novell NetBasic Scripting Server is vulnerable to remote attackers in gaining acces to resources outside of the scripting server root directory. This issue can be exploited with a Web browser.

  TREND MICRO PROTECTION INFORMATION

Users of Trend Micro PC-cillin Internet Security and Network VirusWall can detect this exploit at the network layer with Network Virus Pattern (NVP) 10194 or later.
Download the latest NVW pattern file from the following site:   
http://www.trendmicro.com/download/product.asp?productid=45

  AFFECTED SOFTWARE AND VERSION

  • Novell Small Business Suite 6.0
  • Novell Small Business Suite 5.1
  • Novell Netware 6.0
  • Novell Netware 5.1