Solsoft NSM Format Strings RCE

This script is Copyright (C) 2000-2017 Tenable Network Security, Inc.


Synopsis :

A firewall proxy application running on the remote host is affected
by a remote code execution vulnerability.

Description :

The Solsoft NSM application running on the remote host is affected by
multiple flaws in ulm logging related to format string processing. An
unauthenticated, remote attacker can exploit these to execute
arbitrary code.

See also :

http://www.nessus.org/u?7f17d802

Solution :

If you are using NSM, please contact your vendor for a patch.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)

Family: Gain a shell remotely

Nessus Plugin ID: 10540 ()

Bugtraq ID:

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now