This script is Copyright (C) 1999-2012 Tenable Network Security, Inc.
The remote web server has a denial of service vulnerability.
It was possible to crash Webconfig (which is used to configure
MDaemon) by sending the request :
GET /aaaaa[...]aaa HTTP/1.0
This could allow a remote attacker to crash the web server, preventing
the MDaemon server from being configured remotely.
See also :
Upgrade to the latest version of this software.
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.8
Public Exploit Available : true
Family: Web Servers
Nessus Plugin ID: 10138 ()
Bugtraq ID: 820
CVE ID: CVE-1999-0844
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.