Test ID:	1.3.6.1.4.1.25623.1.0.10963
Category:	Web application abuses
Title:	Compaq Web Based Management Agent Proxy Vulnerability
Summary:	This host is running the Compaq Web Management Agent.; This service can be used as a HTTP proxy. An attacker can use this; to bypass firewall rules or hide the source of web-based attacks.
Description:	Summary: This host is running the Compaq Web Management Agent. This service can be used as a HTTP proxy. An attacker can use this to bypass firewall rules or hide the source of web-based attacks. Solution: Due to the information leak associated with this service, we recommend that you disable the Compaq Management Agent or filter access to TCP ports 2301 and 280. If this service is required, installing the appropriate upgrade from Compaq will fix this issue. The software update for the operating system and hardware can be found via Compaq's support download page. For more information, please see the referenced vendor advisory. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2001-0374 Bugtraq: 20010322 Compaq Insight Manager Proxy Vuln (Google Search) http://archives.neohapsis.com/archives/vuln-dev/2001-q1/0779.html COMPAQ Service Security Patch: SSRT0715 http://www.compaq.com/products/servers/management/mgtsw-advisory.html XForce ISS Database: compaq-wbm-bypass-proxy(6264) https://exchange.xforce.ibmcloud.com/vulnerabilities/6264
Copyright	Copyright (C) 2002 Digital Defense Inc.

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.