 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.10996 |
| Category: | Web Servers |
| Title: | Allaire/Macromedia JRun Sample Files (HTTP) - Active Check |
| Summary: | This host is running the Allaire JRun web server and has sample; files installed. |
| Description: | Summary: This host is running the Allaire JRun web server and has sample files installed. Vulnerability Impact: Several of the sample files that come with JRun contain serious security flaws. An attacker can use these scripts to relay web requests from this machine to another one or view sensitive configuration information. Solution: Sample files should never be left on production servers. Remove the sample files and any other files that are not required. CVSS Score: 6.4 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:N |
| Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2000-0539 Allaire Security Bulletin: ASB00-015 http://www.allaire.com/handlers/index.cfm?ID=16290&Method=Full BugTraq ID: 1386 http://www.securityfocus.com/bid/1386 http://www.osvdb.org/818 XForce ISS Database: jrun-read-sample-files(4774) https://exchange.xforce.ibmcloud.com/vulnerabilities/4774 Common Vulnerability Exposure (CVE) ID: CVE-2000-0540 http://www.osvdb.org/2713 |
| Copyright | Copyright (C) 2001 Digital Defense Inc. |
| This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |