VULHUB ™

Looking Glass is a Perl script distributed by Digex. It is designed to give network statistics from hosts. A problem in the script allows users to gain sensitive information. Due to the insufficient validation of input, it is possible to pass special characters through the script. Special characters passed through the script could allow the querying of all hosts local to the system, yielding it's BGP neighbors, or other sensitive information. This makes it possible for a remote user to gather sensitive information about network assets, and could result in organized attack of network resources.

Looking Glass is a Perl script distributed by Digex. It is designed to give network statistics from hosts. A problem in the script allows users to gain sensitive information. Due to the insufficient validation of input, it is possible to pass special characters through the script. Special characters passed through the script could allow the querying of all hosts local to the system, yielding it's BGP neighbors, or other sensitive information. This makes it possible for a remote user to gather sensitive information about network assets, and could result in organized attack of network resources.