ArGoSoft Mail Server Unspecified XSS

This script is Copyright (C) 2004-2015 Tenable Network Security, Inc.

Synopsis :

The remote host is running a mail server that is affected by an HTML
injection vulnerability.

Description :

The remote host is running the ArGoSoft WebMail interface.

There is a flaw in this interface that could allow an attacker
to conduct cross-site scripting (XSS) attacks against users.
No further details have been provided.

*** Nessus solely relied on the banner of this service to issue
*** this alert.

See also :

Solution :

Upgrade to ArGoSoft or newer.

Risk factor :

Medium / CVSS Base Score : 5.8
CVSS Temporal Score : 5.0
Public Exploit Available : true

Family: CGI abuses : XSS

Nessus Plugin ID: 16012 (argosoft_multiple_flaws2.nasl)

Bugtraq ID: 12044


Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now