Family: Remote file access --> Category: infos
CommunigatePro Hijacking Vulnerability Scan
Vulnerability Scan Summary
Checks the version of the remote CommunigatePro web Server
Detailed Explanation for this Vulnerability Test
The remote CommuniGatePro, according to its version number, is vulnerable
to a flaw which may allow a possible hacker access the mailbox of its victims.
To exploit such a flaw, the attacker needs to send an email to its victim
with a link to an image hosted on a rogue server which will store the Referer
field sent by the user user-agent which contains the credentials used to access
the victim's mailbox.
Solution : Upgrade to CommuniGatePro 4.1b2 or newer
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.