Buffalo LinkStation Direct Request Remote File Disclosure

medium Nessus Plugin ID 64915

Language:

Synopsis

The remote web server contains an application that is affected by a remote file disclosure vulnerability.

Description

The web server included with the remote Buffalo LinkStation device does not properly configure access rights, which allows an unauthenticated remote attacker to gain access to sensitive files such as the device's private RSA key.

Solution

Unknown at this time.

Plugin Details

Severity: Medium

ID: 64915

File Name: buffalo_linkstation_information_disclosure.nasl

Version: 1.7

Type: remote

Family: CGI abuses

Published: 2/27/2013

Updated: 1/19/2021

Supported Sensors: Nessus

Risk Information

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 4.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Vulnerability Information

Required KB Items: www/buffalo_linkstation

Exploit Available: true

Exploit Ease: Exploits are available

Exploited by Nessus: true

Reference Information

BID: 56784

Detections

Analytics