Summary
The Netware Management Portal software is running on this machine. The Portal allows anyone to view the current server configuration and locate other Portal servers on the network. It is possible to browse the server's filesystem by requesting the volume in the URL. However, a valid user account is needed to do so.
Solution
Disable this service if it is not in use or block connections to this server on TCP ports 8008 and 8009.
Severity
Classification
-
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N
Related Vulnerabilities
- Apple iTunes Multiple Vulnerabilities - Apr10
- Adobe Flash Player/Air Multiple Vulnerabilities -feb10 (Linux)
- Apple Safari WebKit Information Disclosure Vulnerability (Mac OS X)
- Adobe Reader Multiple Unspecified Vulnerabilities Jun06 (Mac OS X)
- Adobe Products Unspecified Cross-Site Scripting Vulnerability June-2011 (Windows)