F-Secure Policy Manager Server Fsmsh.dll Module DoS Network Vulnerability

Summary

The remote host is an F-Secure Policy Manager Server. Description : The remote host is running a version a F-Secure Policy Manager Server which is vulnerable to a denial of service. A malicious user can forge a request to query a MS-DOS device name through the 'fsmsh.dll' CGI module, which will prevent legitimate users from accessing the service using the Manager Console.

Solution

Upgrade to F-Secure Policy Manager Server 7.01 or later.

References

http://www.f-secure.com/security/fsc-2007-4.shtml

Updated on 2015-03-25

Severity

Classification

CVE CVE-2007-2964
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Asterisk T.38 Negotiation Remote Denial Of Service Vulnerability
chm2pdf Insecure Temporary File Creation or DoS Vulnerability
ddrLPD Remote Denial of Service Vulnerability
CUPS '_cupsImageReadTIFF()' Integer Overflow Vulnerability
Apache Tomcat Content-Type Header Denial Of Service Vulnerability

F-Secure Policy Manager Server fsmsh.dll module DoS

Take action and discover your vulnerabilities