WinComLPD LPD Monitoring Server Authentication Bypass
High Nessus Plugin ID 30187
SynopsisThe remote service is affected by an authentication bypass vulnerability.
DescriptionThe remote installation of WinComLPD fails to ensure that authentication to its LPD Monitoring Server has been successful before processing requests. A remote attacker can leverage this issue to bypass authentication and gain administrative control of the affected application.
Note that there are reportedly several other vulnerabilities associated with this version of WinComLPD, including multiple buffer overflows, although Nessus has not checked for them.
SolutionUnknown at this time.