Family: Gain root remotely --> Category: infos
GFI MailSecurity Web Module Buffer Overflow Vulnerability Vulnerability Scan
Vulnerability Scan Summary
Checks for a buffer overflow vulnerability in GFI MailSecurity's Web Module
Detailed Explanation for this Vulnerability Test
The remote host contains an application that is affected by a buffer
According to its version number, the instance of GFI MailSecurity on
the remote host suffers from a buffer overflow in its web based
moderator interface. An unauthenticated attacker can reportedly
exploit this flaw by sending large strings in several areas of the
HTTP request to gain control of the remote host.
See also :
Apply the patch referenced in the vendor advisory above.
Critical / CVSS Base Score : 10
Click HERE for more information and discussions on this network vulnerability scan.