Compaq Web Based Management Agent Proxy Vulnerability Network Vulnerability

Summary

This host is running the Compaq Web Management Agent. This service can be used as a HTTP proxy. An attacker can use this to bypass firewall rules or hide the source of web-based attacks.

Solution

Due to the information leak associated with this service, we recommend that you disable the Compaq Management Agent or filter access to TCP ports 2301 and 280. If this service is required, installing the appropriate upgrade from Compaq will fix this issue. The software update for your operating system and hardware can be found via Compaq's support download page: http://www.compaq.com/support/files/server/us/index.html For more information, please see the vendor advisory at: http://www.compaq.com/products/servers/management/SSRT0758.html

Severity

Classification

CVE CVE-2001-0374

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Adobe Acrobat Out-of-bounds Vulnerability Feb15 (Mac OS X)
Adobe Acrobat Multiple Unspecified Vulnerabilities -01 May13 (Mac OS X)
Adobe Flash Media Server multiple vulnerabilities
Adobe Flash Player Arbitrary Code Execution Vulnerability - 01 Feb14 (Mac OX S)
Adobe Acrobat and Reader Multiple Vulnerabilities -July10 (Windows)

Take action and discover your vulnerabilities