WinGate Telnet Proxy localhost Connection Saturation DoS

Medium Nessus Plugin ID 10310


The remote proxy is vulnerable to denial of service.


The remote Wingate service can be forced to connect to itself continually until it runs out of buffers. When this happens, the telnet proxy service will be disabled.

An attacker may block your telnet proxy this way, thus preventing your system from working properly if you need telnet. An attacker may also use this flaw to force your systems to use another proxy which may be under the attacker's control.


Configure WinGate so that only authorized users can use it.

See Also

Plugin Details

Severity: Medium

ID: 10310

File Name: wingate_denial.nasl

Version: $Revision: 1.24 $

Type: remote

Agent: windows

Family: Windows

Published: 1999/06/22

Modified: 2016/11/29

Dependencies: 10309, 17975

Risk Information

Risk Factor: Medium


Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Information

CPE: cpe:/a:qbik:wingate

Required KB Items: wingate/enabled

Vulnerability Publication Date: 1998/02/21

Reference Information

CVE: CVE-1999-0290

OSVDB: 11506