NSM Multiple Service Remote Format String

This script is Copyright (C) 2000-2014 Tenable Network Security, Inc.

Synopsis :

The remote host is vulnerable to an access control breach.

Description :

The remote proxy is vulnerable to format strings attacks when issued a
badly formed user name.

This flaw allows an attacker to execute arbitrary code on this host.

See also :


Solution :

If you are using NSM, please contact your vendor for a patch.

Risk factor :

High / CVSS Base Score : 7.5

Family: Gain a shell remotely

Nessus Plugin ID: 10540 ()

Bugtraq ID: