This script is Copyright (C) 2012-2014 Tenable Network Security, Inc.
The remote application is susceptible to a buffer overflow attack.
According to its self-reported version number, the installation of
Network UPS Tools is affected by a buffer overflow caused by an error
in the 'addchar()' function. An unauthenticated, remote attacker
sending a specially crafted request to the server may trigger an
application crash or the execution of arbitrary code.
See also :
Upgrade to Network UPS Tools 2.6.4 or later.
Risk factor :
Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 7.4
Public Exploit Available : false
Nessus Plugin ID: 59660 ()
Bugtraq ID: 53743
CVE ID: CVE-2012-2944
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.