Red Hat Interchange INET Mode Detection

This script is Copyright (C) 2002-2013 Tenable Network Security, Inc.


Synopsis :

The remote host is running Red Hat Interchange.

Description :

It seems that 'Red Hat Interchange' ecommerce and dynamic
content management application is running in 'Inet' mode
on this port.

Versions 4.8.5 and earlier are flawed and may disclose
contents of sensitive files to attackers.

** Nessus neither checked Interchange version nor tried
** to exploit the vulnerability

See also :

http://www.nessus.org/u?f3cc17f8

Solution :

Upgrade your software if necessary or configure it
for 'Unix mode' communication only.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N)
CVSS Temporal Score : 4.3
(CVSS2#E:H/RL:OF/RC:C)
Public Exploit Available : true

Family: Service detection

Nessus Plugin ID: 11128 (interchange_detect.nasl)

Bugtraq ID: 5453

CVE ID: CVE-2002-0874