Nessus Plugin #10745
Plugin Index
Note: This file has been created from a
downloaded version of the Nessus Plugins
from
http://www.nessus.org/.
Therefore, the information here can be outdated.
WorldClient for MDaemon Server Detection
- Family:
- General
- Category:
- infos
- Copyright:
- This script is Copyright (C) 2001 SecuriTeam
- Summary:
- Check for WorldClient for MDaemon
- Version:
- $Revision: 1.12 $
- Cve_id:
- -
- Bugtraq_id:
- 1462, 2478, 4687, 4689, 823
- Xrefs:
- -
- Description:
- We detected the remote web server is
running WorldClient for MDaemon. This web server enables attackers
with the proper username and password combination to access locally
stored mailboxes.
In addition, earlier versions of WorldClient suffer from buffer overflow
vulnerabilities, and web traversal problems (if those are found the Risk
factor is higher).
Solution: Make sure all usernames and passwords are adequately long and
that only authorized networks have access to this web server's port number
(block the web server's port number on your firewall).
Risk factor : Low
For more information see:
http://www.securiteam.com/cgi-bin/htsearch?config=htdigSecuriTeam&words=WorldClient
Generiert am 27.04.2005 um 18:49:54 Uhr.