WinRoute Proxy Detection

Info Nessus Network Monitor Plugin ID 1102

Synopsis

The remote proxy may pass local user credentials to a malicious external website.

Description

The remote client is utilizing a WinRoute Proxy. Some versions of this proxy have a bug wherein client Proxy authorization is forwarded to remote web servers. As a result, a malicious web server can retrieve the user's Proxy UserID and password. Versions of Winroute up to 5.1.4 are affected by this vulnerability.

Solution

Upgrade to 5.1.4 or later.

See Also

http://www.kerio.com

Plugin Details

Severity: Info

ID: 1102

Family: Web Clients

Published: 2004/08/20

Modified: 2015/12/04

Risk Information

Risk Factor: Info