Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.10963
Category:Web application abuses
Title:Compaq Web Based Management Agent Proxy Vulnerability
Summary:This host is running the Compaq Web Management Agent.; This service can be used as a HTTP proxy. An attacker can use this; to bypass firewall rules or hide the source of web-based attacks.
Description:Summary:
This host is running the Compaq Web Management Agent.
This service can be used as a HTTP proxy. An attacker can use this
to bypass firewall rules or hide the source of web-based attacks.

Solution:
Due to the information leak associated with this service,
we recommend that you disable the Compaq Management Agent or filter access to
TCP ports 2301 and 280.

If this service is required, installing the appropriate upgrade from Compaq
will fix this issue. The software update for the operating system and hardware
can be found via Compaq's support download page.

For more information, please see the referenced vendor advisory.

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2001-0374
Bugtraq: 20010322 Compaq Insight Manager Proxy Vuln (Google Search)
http://archives.neohapsis.com/archives/vuln-dev/2001-q1/0779.html
COMPAQ Service Security Patch: SSRT0715
http://www.compaq.com/products/servers/management/mgtsw-advisory.html
XForce ISS Database: compaq-wbm-bypass-proxy(6264)
https://exchange.xforce.ibmcloud.com/vulnerabilities/6264
CopyrightThis script is Copyright (C) 2002 Digital Defense Inc.

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.