|
Family: Remote file access --> Category: infos
Avotus mm File Retrieval attempt Vulnerability Scan
Vulnerability Scan Summary Retrieves /etc/shadow
Detailed Explanation for this Vulnerability Test
The script attempts to force the remote Avotus CDR mm service to include
the file /etc/passwd accross the network.
Solution : The vendor has provided a fix for this issue to all customers.
The fix will be included in future shipments and future versions of the product.
If an Avotus customer has any questions about this problem, they should contact
support@avotus.com.
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|