Detections
Analytics
ManageEngine ServiceDesk Plus User and Domain Enumeration
medium Nessus Plugin ID 86444
Language:
Synopsis
The remote web server is affected by an information disclosure vulnerability.Description
The installed version of ManageEngine ServiceDesk Plus running on the remote web server is affected by an information disclosure vulnerability due to a flaw in the /servlet/AJaxServlet script that is triggered when handling a request involving the 'checkUser' or 'searchLocalAuthDomain' actions. An unauthenticated, remote attacker can exploit this, via repeated requests to AJaxDomainServlet, to enumerate arbitrary user names and domains.Solution
Upgrade to ManageEngine ServiceDesk Plus version 9.0 build 9031 or above and disable domain filtering for users.See Also
http://www.nessus.org/u?d47cebf9
https://www.manageengine.com/products/service-desk/readme.html#readme90
Plugin Details
Severity: Medium
ID: 86444
File Name: manageengine_servicedesk_user_domain_enum.nasl
Version: 1.7
Type: remote
Family: CGI abuses
Published: 10/20/2015
Updated: 1/19/2021
Supported Sensors: Nessus
Risk Information
CVSS v2
Risk Factor: Medium
Base Score: 5
Temporal Score: 3.9
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N
Vulnerability Information
CPE: cpe:/a:manageengine:servicedesk_plus
Required KB Items: www/manageengine_servicedesk
Exploit Available: true
Exploit Ease: Exploits are available
Exploited by Nessus: true
Patch Publication Date: 12/23/2014
Vulnerability Publication Date: 1/23/2015