McAfee Web Gateway OpenSSL Information Disclosure (SB10071) (Heartbleed)

This script is Copyright (C) 2014-2016 Tenable Network Security, Inc.

Synopsis :

The remote host is affected by an information disclosure

Description :

The remote host is running a version of McAfee Web Gateway (MWG) that
is affected by an information disclosure vulnerability due to a flaw
in the OpenSSL library, commonly known as the Heartbleed bug. An
attacker could potentially exploit this vulnerability repeatedly to
read up to 64KB of memory from the device.

See also :

Solution :

Apply the relevant patch per the vendor advisory.

Risk factor :

High / CVSS Base Score : 9.4
CVSS Temporal Score : 7.4
Public Exploit Available : true

Family: Misc.

Nessus Plugin ID: 73836 ()

Bugtraq ID: 66690

CVE ID: CVE-2014-0160

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now