|
Family: CGI abuses --> Category: attack
Sympa unauthorised list creation security issue Vulnerability Scan
Vulnerability Scan Summary Checks for sympa version
Detailed Explanation for this Vulnerability Test
The remote host seems to be running sympa, an open source mailing list software.
This version of Sympa has an authentication flaw within the web interface.
A possible hacker, exploiting this flaw, would be able to bypass security
mechanisms resulting in the ability to perform listmaster functions
remotely.
Solution : Update to version 4.1.2 or newer
See also: http://www.sympa.org/
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|