Whatsup Gold Vulnerable CGI Network Vulnerability

Summary

The '_maincfgret' cgi is installed. Some versions were vulnerable to a buffer overflow. ** This might be a false positive, no attack was performed ** and the version was not checked http://www.idefense.com/application/poi/display?id=142&type=vulnerabilities http://www.packetstormsecurity.org/0408-advisories/08.25.04.txt

Solution

upgrade to Whatsup Gold 8.03 HF 1 if needed

Severity

Classification

CVE CVE-2004-0798

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

AdMentor Login Flaw
ARRIS 2307 Unprotected Web Console
appRain CMF SQL Injection And Cross Site Scripting Vulnerabilities
Atlassian JIRA Privilege Escalation and Multiple Cross Site Scripting Vulnerabilities
Admbook PHP Code Injection Flaw

Whatsup Gold vulnerable CGI

Take action and discover your vulnerabilities