WebConnect Multiple Remote Vulnerabilities (deprecated)
High Nessus Network Monitor Plugin ID 2639
SynopsisThe remote host is vulnerable to multiple attack vectors.
DescriptionThe remote host is running OpenConnect WebConnect. WebConnect is a web-based graphical user interface that gives remote users console access to mainframe, midrange, and Unix systems. WebConnect can be used to launch a Java-based telnet console that communicates over the HTTP protocol. This version of WebConnect is vulnerable to several remote attacks. The impact of the attack ranges from Denial of Service (DoS) to data compromise. An attacker exploiting these flaws would only need to be able to send HTTP requests to the web server. Successful exploitation would result in compromise of data or loss of availability.
SolutionUpgrade or patch according to vendor recommendations.