ePolicy Orchestrator Multiple Remote Vulnerabilities (OF, FS)

This script is Copyright (C) 2003-2011 Tenable Network Security, Inc.


Synopsis :

The remote web server has multiple vulnerabilities.

Description :

According to its banner, the remote version of ePolicy Orchestrator
has multiple vulnerabilities which may allow an attacker to gain
information on the MSDE installation of this host, or even execute
arbitrary code.

Solution :

Upgrade to the latest version of this software.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 7.4
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: Web Servers

Nessus Plugin ID: 11812 (epolicy_orchestrator_multiple_issues.nasl)

Bugtraq ID: 8316
8318
8319

CVE ID: CVE-2003-0148
CVE-2003-0149
CVE-2003-0616