wodSFTP ActiveX Arbitrary File Access

This script is Copyright (C) 2006-2015 Tenable Network Security, Inc.


Synopsis :

The remote Windows host has an ActiveX control that allows arbitrary
access to the filesystem.

Description :

The Windows remote host contains the wodSFTP ActiveX control, which
provides SFTP functionality to applications that use it and is marked
as 'safe for scripting'. A remote attacker may be able to use this
control to store files on the remote filesystem or retrieve files from
it by means of a specially crafted HTML page or email and without any
further interaction from the user.

Solution :

Disable the use of this ActiveX control from within Internet Explorer
by setting its kill bit.

Risk factor :

Medium / CVSS Base Score : 4.0
(CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:N)
CVSS Temporal Score : 3.2
(CVSS2#E:U/RL:W/RC:ND)
Public Exploit Available : false

Family: Windows

Nessus Plugin ID: 21625 ()

Bugtraq ID: 18192

CVE ID: CVE-2006-1175

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now