|
|
Family: Denial of Service --> Category: infos
Dell OpenManage Web Server <= 3.7.1 Vulnerability Scan
Vulnerability Scan Summary
Dell OpenManage Web Server 3.2.0-3.7.1 are vulnerable to a heap based buffer overflow
Detailed Explanation for this Vulnerability Test
The remote host is running the Dell OpenManage Web Server.
Dell OpenManage Web Servers 3.2.0-3.7.1 are vulnerable to a heap based
buffer overflow attack. A proof of concept denial of service attack has been
released.
*** Note : The Dell patch does not increase the version number of this service
*** so this may be a false positive
Patch is available at http://support.dell.com/filelib/download.asp?FileID=96563&c=us&l=en&s=DHS&Category=36&OS=WNT5&OSL=EN&SvcTag=&SysID=PWE_FOS_XEO_6650&DeviceID=2954&Type=&ReleaseID=R74029
See also : http://sh0dan.org/files/domadv.txt
Solution : Install the security patch available from Dell
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|
