Family: CGI abuses --> Category: attack
TIPS MailPost Multiple Flaws Vulnerability Scan
Vulnerability Scan Summary
Test the remote mailpost.exe
Detailed Explanation for this Vulnerability Test
The remote host is using a version of TIPS MailPost which is vulnerable
to several flaws.
TIPS MailPost is an HTML form content email application designed to facilitate
the emailing of HTML form data to a third party.
There are various flaws in the remote version of this software :
- A remote file enumeration vulnerability which may allow a possible hacker to
acertain if a file exists or not
- Two cross site scripting vulnerabilities which may allow a possible hacker to steal
the cookies of third-parties users
- An information disclosure vulnerability which may allow a possible hacker to gain
more information about the remote host
Solution : upgrade your software or protect it with a filtering reverse proxy
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.