Family: Gain root remotely --> Category: infos
iPlanet unauthorized sensitive data retrieval Vulnerability Scan
Vulnerability Scan Summary
Check for vulnerable version of iPlanet Webserver
Detailed Explanation for this Vulnerability Test
The remote iPlanet webserver (according to it's version number) is vulnerable
to a bug wherein a remote user can retrieve sensitive data from memory
allocation pools, or cause a denial of service against the server.
*** Since Nessus solely relied on the banner of this server,
*** (and iPlanet 4 does not include the SP level in the banner),
*** to issue this alert, this may be a false positive.
Solution : Update to iPlanet 4.1 SP7 or newer
More information : http://www.atstake.com/research/advisories/2001/a041601-1.txt
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.