Windows Short Filename
Severity:
Low
Summary
Invicti identified a Windows Short File/Folder name disclosure.
The vulnerability is caused by the tilde character (~) with the old DOS 8.3 name convention in an HTTP request. It allows a remote attacker to disclose file and folder names that is not supposed to be accessible.
Impact
Attackers could find important files that are normally not accessible from the outside and gain intelligence about the application infrastructure. This may cause the leakage of files containing sensitive information such as credentials, configuration files and maintenance scripts.
Remediation
- For Windows Server 2012 and after
- Set value to "1" of the
NtfsDisable8dot3NameCreationregistry key inHKLMSYSTEMCurrentControlSetControlFileSystem - Open the Command Line with administrator rights and run the command below.
C:WindowsSystem32>FSUTIL.exe 8dot3name set C: 1
- Set value to "1" of the
- For Windows Server 2008 and before
- Set value to "1" of the
NtfsDisable8dot3NameCreationregistry key inHKLMSYSTEMCurrentControlSetControlFileSystem
- Set value to "1" of the
- Open the Command Line with administrator rights and run the command below.
C:WindowsSystem32>FSUTIL.exe behavior set disable8dot3 1 - Incorrectly editing the registry may severely damage your system. Before making changes to the registry, you should back up any valued data on your computer.
Required Skills for Successful Exploitation
Actions To Take
Classifications
Vulnerability Index
You can search and find all vulnerabilities
Select Category
Select Vulnerability
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Featured resources
Build your resistance to threats. And save hundreds of hours each month.
