WinGate POST Request Buffer Overflow
High Nessus Plugin ID 21674
SynopsisThe remote HTTP proxy server is prone to a buffer overflow attack.
DescriptionThe remote host appears to be running WinGate Proxy Server, a Windows application for managing and securing Internet access.
According to its banner, the version of WinGate installed on the remote host is affected by a buffer overflow vulnerability in its HTTP proxy service. An attacker with access to use the proxy may be able to exploit this issue to execute arbitrary code on the remote host.
Note that by default the service operates with LOCAL SYSTEM privileges, which means that a successful attack may result in a complete compromise of the affected system.
SolutionUpgrade to WinGate 6.1.3 or later.