Nessus Plugin #11727
Plugin Index
Note: This file has been created from a
downloaded version of the Nessus Plugins
from
http://www.nessus.org/.
Therefore, the information here can be outdated.
CWmail.exe vulnerability
- Family:
- CGI abuses
- Category:
- infos
- Copyright:
- This script is Copyright (C) 2003 John Lampe
- Summary:
- Checks for the cwmail.exe file
- Version:
- $Revision: 1.5 $
- Cve_id:
- CAN-2002-0273
- Bugtraq_id:
- 4093
- Xrefs:
- -
- Description:
- The CWMail.exe exists on this webserver.
Some versions of this file are vulnerable to remote exploit.
An attacker may make use of this file to gain access to
confidential data or escalate their privileges on the Web
server.
Solution : remove it from the cgi-bin or scripts directory.
Patch information: http://marc.theaimsgroup.com/?l=bugtraq&m=101362100602008&w=2
Risk factor : High
Generiert am 27.04.2005 um 18:49:54 Uhr.