Test ID:	1.3.6.1.4.1.25623.1.0.103528
Category:	Web application abuses
Title:	Plixer / Dell SonicWALL Scrutinizer < 9.5.0 Multiple Vulnerabilities - Active Check
Summary:	Plixer / Dell SonicWALL Scrutinizer is prone to multiple; vulnerabilities.
Description:	Summary: Plixer / Dell SonicWALL Scrutinizer is prone to multiple vulnerabilities. Vulnerability Insight: The following flaws exist: - CVE-2012-2626: A security bypass vulnerability. Successful attacks can allow an attacker to gain access to the affected application using the default authentication credentials. - CVE-2012-2627: A vulnerability that lets attackers upload arbitrary files. The issue occurs because the application fails to adequately sanitize user-supplied input. An attacker may leverage this issue to upload arbitrary files to the affected computer, this can result in arbitrary code execution within the context of the vulnerable application. - CVE-2012-3848: Multiple cross-site scripting (XSS) vulnerabilities. Affected Software/OS: Plixer / Dell SonicWALL Scrutinizer versions prior to 9.5.0. Solution: Update to version 9.5.0 or later. CVSS Score: 9.4 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2012-2626 http://www.plixer.com/Press-Releases/plixer-releases-9-5-2.html https://www.trustwave.com/spiderlabs/advisories/TWSL2012-014.txt Common Vulnerability Exposure (CVE) ID: CVE-2012-2627 Common Vulnerability Exposure (CVE) ID: CVE-2012-3848
Copyright	Copyright (C) 2012 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.