NetSupport Manager < 11.00.0005
Medium Nessus Plugin ID 50547
SynopsisThe remote Windows host has an application that is affected by an information disclosure vulnerability.
DescriptionThe installed version of NetSupport Manager is prior to 11.00.0005. It is, therefore, affected by an information disclosure vulnerability due to bundled vulnerable versions of NetSupport Manager clients, and controls that reveal sensitive information such as IP and MAC addresses in cleartext HTTP headers while communicating with NetSupport Manager Gateway. By monitoring traffic between NetSuppor Manager clients and NetSupport Manager Gateway, an attacker can gain sensitive information about the client machine.
SolutionUpgrade to NetSupport Manager 11.00.0005 or later.