|
Family: Windows --> Category: infos
Possible GDI+ compromise Vulnerability Scan
Vulnerability Scan Summary Logs in as user 'X' with no password
Detailed Explanation for this Vulnerability Test
It was possible to log into the remote host with the login 'X' and
a blank password.
A widely available exploit, using one of the vulnerabilities described
in the Microsoft Bulletin MS04-028 creates such an account. This probably
mean that the remote host has been compromised by the use of this exploit.
See also : http://www.microsoft.com/technet/security/Bulletin/MS04-028.mspx
Solution : Re-install this host, as it has been compromised
Threat Level: Critical
Click HERE for more information and discussions on this network vulnerability scan.
|