WinGate Telnet Proxy localhost Connection Saturation DoS

This script is Copyright (C) 1999-2016 Tenable Network Security, Inc.


Synopsis :

The remote proxy is vulnerable to denial of service.

Description :

The remote Wingate service
can be forced to connect to itself continually
until it runs out of buffers. When this happens,
the telnet proxy service will be disabled.

An attacker may block your telnet proxy this
way, thus preventing your system from working
properly if you need telnet. An attacker may also
use this flaw to force your systems to use another
proxy which may be under the attacker's control.

See also :

http://seclists.org/bugtraq/1998/Feb/86

Solution :

Configure WinGate so that only authorized users can use it.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P)

Family: Windows

Nessus Plugin ID: 10310 ()

Bugtraq ID:

CVE ID: CVE-1999-0290

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now