Compaq Web-enabled Management Software HTTP Server Arbitrary Traffic Proxy

High Nessus Plugin ID 10963


The remote web management agent can be abused to serve as a network proxy.


The remote Compaq Web Management Agent install can be used as an HTTP proxy. An attacker can use this to bypass firewall rules or hide the source of web-based attacks.


Due to the information leak associated with this service, you should disable the Compaq Management Agent or filter access to TCP ports 2301 and 280.

If this service is required, contact the vendor for a software update.

See Also

Plugin Details

Severity: High

ID: 10963

File Name: DDI_Compaq_Mgmt_Proxy.nasl

Version: $Revision: 1.17 $

Type: remote

Family: Web Servers

Published: 2002/05/22

Modified: 2013/11/04

Dependencies: 10107, 10386, 17975

Risk Information

Risk Factor: High


Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

Required KB Items: www/compaq

Vulnerability Publication Date: 2001/01/09

Reference Information

CVE: CVE-2001-0374

OSVDB: 787