CVE-2013-4098

DS3 Authentication Server - Remote Code Execution via ErrorViewer.jsp Message Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2013-4098. PoCs published by Pedro Andujar.

AI-analyzed exploit summary This is a detailed advisory describing multiple vulnerabilities in DS3 Authentication Server, including a command execution flaw via TestTelnetConnection.jsp, physical path disclosure, and user-controllable error messages. The advisory includes proof-of-concept HTTP requests demonstrating the issues.

Description

ServerAdmin/ErrorViewer.jsp in DS3 Authentication Server allow remote attackers to inject arbitrary error-page text via the message parameter.

Exploits (1)

exploitdb WRITEUP

by Pedro Andujar · textwebappshardware

https://www.exploit-db.com/exploits/25976

View Code ZIP pw:eip

This is a detailed advisory describing multiple vulnerabilities in DS3 Authentication Server, including a command execution flaw via TestTelnetConnection.jsp, physical path disclosure, and user-controllable error messages. The advisory includes proof-of-concept HTTP requests demonstrating the issues.

Classification

Writeup 90%

Attack Type

Rce | Info Leak

Complexity

Trivial

Reliability

Reliable

Target: DS3 Authentication Server (unknown version)

Auth required

Prerequisites: Access to the ServerAdmin interface · Valid session cookie (JSESSIONID)

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Various Sources x_refsource_misc

http://www.digitalsec.net/stuff/explt+advs/DS3.AuthServer.txt

Exploit, Third Party Advisory x_refsource_misc

http://packetstormsecurity.com/files/121862/DS3-Authentication-Server-Command-Execution.html

Scores

EPSS 0.0436

EPSS Percentile 90.0%

Details

CWE

CWE-20

Status published

Products (1)

ds3/authentication_server

Published Jun 28, 2013

Tracked Since Feb 18, 2026