Test ID:	1.3.6.1.4.1.25623.1.0.80068
Category:	Web application abuses
Title:	Ipswitch WhatsUp Professional Multiple Vulnerabilities
Summary:	Deprecated since it didn't check for any version or doing any; active vulnerability evaluation.;; The remote web server is affected by multiple flaws.;; Description :;; The remote host appears to be running Ipswitch WhatsUp Professional, which is used to monitor states of; applications, services and hosts.;; The version of WhatsUp Professional installed on the remote host is prone to multiple issues, including source; code disclosure and cross-site scripting vulnerabilities.
Description:	Summary: Deprecated since it didn't check for any version or doing any active vulnerability evaluation. The remote web server is affected by multiple flaws. Description : The remote host appears to be running Ipswitch WhatsUp Professional, which is used to monitor states of applications, services and hosts. The version of WhatsUp Professional installed on the remote host is prone to multiple issues, including source code disclosure and cross-site scripting vulnerabilities. Solution: No known solution was made available for at least one year since the disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2006-2351 BugTraq ID: 17964 http://www.securityfocus.com/bid/17964 Bugtraq: 20060511 Ipswitch WhatsUp Professional multiple flaws (Google Search) http://www.securityfocus.com/archive/1/433808 http://www.osvdb.org/25469 http://www.osvdb.org/25470 http://secunia.com/advisories/20075 http://securityreason.com/securityalert/897 http://www.vupen.com/english/advisories/2006/1787 XForce ISS Database: whatsup-navigation-toolresults-xss(26500) https://exchange.xforce.ibmcloud.com/vulnerabilities/26500 Common Vulnerability Exposure (CVE) ID: CVE-2006-2352 http://www.osvdb.org/25471 http://www.osvdb.org/25472 XForce ISS Database: whatsup-tools-deviceselection-xss(26501) https://exchange.xforce.ibmcloud.com/vulnerabilities/26501 Common Vulnerability Exposure (CVE) ID: CVE-2006-2353 http://www.osvdb.org/25473 XForce ISS Database: whatsup-deviceselection-user-redirect(26502) https://exchange.xforce.ibmcloud.com/vulnerabilities/26502 Common Vulnerability Exposure (CVE) ID: CVE-2006-2354 http://www.osvdb.org/25476 XForce ISS Database: whatsup-login-username-enumeration(26503) https://exchange.xforce.ibmcloud.com/vulnerabilities/26503 Common Vulnerability Exposure (CVE) ID: CVE-2006-2355 http://www.osvdb.org/25477 XForce ISS Database: whatsup-404error-path-disclosure(26504) https://exchange.xforce.ibmcloud.com/vulnerabilities/26504 Common Vulnerability Exposure (CVE) ID: CVE-2006-2356 http://www.osvdb.org/25475 XForce ISS Database: whatsup-rendermap-information-disclosure(26505) https://exchange.xforce.ibmcloud.com/vulnerabilities/26505 Common Vulnerability Exposure (CVE) ID: CVE-2006-2357 XForce ISS Database: whatsup-login-source-disclosure(26506) https://exchange.xforce.ibmcloud.com/vulnerabilities/26506
Copyright	Copyright (C) 2008 David Maciejak

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.