|
Family: CGI abuses --> Category: infos
Cobalt siteUserMod cgi Vulnerability Scan
Vulnerability Scan Summary Searches for the existence of /.cobalt/siteUserMod/siteUserMod.cgi
Detailed Explanation for this Vulnerability Test
The Cobalt 'siteUserMod' CGI is installed.
Older versions of this CGI allow any user to change the
administrator password.
Make sure you are running the latest version.
Solution :
RaQ 1 Users, download :
ftp://ftp.cobaltnet.com/
pub/experimental/security/siteUserMod/RaQ1-Security-3.6.pkg
RaQ 2 Users, download :
ftp://ftp.cobaltnet.com/
pub/experimental/security/siteUserMod/RaQ2-Security-2.94.pkg
RaQ 3 Users, download :
ftp://ftp.cobaltnet.com/
pub/experimental/security/siteUserMod/RaQ3-Security-2.2.pkg
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|