Whatsup Gold Vulnerable CGI Network Vulnerability

Summary

The '_maincfgret' cgi is installed. Some versions were vulnerable to a buffer overflow. ** This might be a false positive, no attack was performed ** and the version was not checked http://www.idefense.com/application/poi/display?id=142&type=vulnerabilities http://www.packetstormsecurity.org/0408-advisories/08.25.04.txt

Solution

upgrade to Whatsup Gold 8.03 HF 1 if needed

Severity

Classification

CVE CVE-2004-0798
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

b2Evolution title SQL Injection
Apache Struts2 Showcase Skill Name Remote Code Execution Vulnerability
appRain CMF SQL Injection And Cross Site Scripting Vulnerabilities
AWStats Totals 'sort' Parameter Remote Command Execution Vulnerabilities
AIOCP 'cp_html2xhtmlbasic.php' Remote File Inclusion Vulnerability

Whatsup Gold vulnerable CGI

Take action and discover your vulnerabilities