|
Family: Gain root remotely --> Category: infos
Visnetic AntiVirus Plug-in for MailServer Local Privilege Escalation Vulnerability Vulnerability Scan
Vulnerability Scan Summary Checks version of Visnetic AntiVirus Plug-in for MailServer
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote Windows application is prone to a local privilege
escalation issue.
Description :
The version of VisNetic AntiVirus Plug-in for MailServer installed on
the remote host does not drop its rights before invoking other
programs. A possible hacker with local access can exploit this flaw to
execute arbitrary programs on the affected host with LOCAL SYSTEM
rights.
See also :
http://secunia.com/secunia_research/2005-65/advisory/
Solution :
Upgrade to VisNetic AntiVirus Plug-in for VisNetic MailServer version
4.6.1.2 or later.
Threat Level:
High / CVSS Base Score : 7
(AV:L/AC:L/Au:NR/C:C/A:C/I:C/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|