Family: Gain a shell remotely --> Category: infos
Kerio MailServer < 6.0.1 Vulnerability Scan
Vulnerability Scan Summary
Checks for Kerio MailServer < 6.0.1
Detailed Explanation for this Vulnerability Test
The remote host is running a version of Kerio MailServer prior to 6.0.1.
Kerio Mailserver is an SMTP server which ships with an embedded HTTP server.
It has been reported that there are multiple remote overflows in
versions of Kerio prior to 6.0.1, although the exact nature of these
overflows is not yet known.
*** NOTE: Nessus acertaind this vulnerability based on the received
*** banner information from the host. If the host is running
*** obfuscated banners, this may be a false positive.
Solution : Upgrade to Kerio MailServer 6.0.1 or newer
See also : http://www.securityfocus.com/bid/10936/
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.