Alibaba Web Server
------------------

CVE Number: 
CAN-1999-0776
CAN-1999-0885

Details:
The Alibaba Web Server has several files which allow for remote command
execution. The files are get32.exe, get16.exe, push32.exe, and push16.exe.
It is also susceptible to a dot-dot (..) attack.

Fix:
It is recommended that the Alibaba Web Server be removed from the system. It
is currently unmaintained so no patches are ever expected.

Related URLs:
http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind9905&L=NTBUGTRAQ&P=R1533
http://archives.neohapsis.com/archives/bugtraq/2000-07/0237.html

$Id: alibaba,v 1.1 2000/11/06 15:34:05 loveless Exp $
