Fortinet FortiOS 5.0.x < 5.0.2 Multiple Vulnerabilities
High Nessus Plugin ID 85741
SynopsisThe remote host is affected by multiple vulnerabilities.
DescriptionThe remote host is running a version of Fortinet FortiOS 5.0.x prior to 5.0.2. It is, therefore, affected by the following vulnerabilities :
- A security bypass vulnerability exists due to a flaw when using SMTP. An unauthenticated, remote attacker can exploit this to bypass the DLP full content archive.
- An unspecified flaw exists in the SSL renegotiation functionality that an unauthenticated, remote attacker can exploit to cause a denial of service condition.
SolutionUpgrade to Fortinet FortiOS 5.0.2 or later.