LogMeIn 'cfgadvanced.html' HTTP Header Injection
Medium Nessus Network Monitor Plugin ID 5045
SynopsisThe remote host is affected by a HTTP header injection vulnerability.
DescriptionThe remote host is a LogMeIn server awaiting remote connections. The installed version of LogMeIn is 4.0.784 or earlier. Such versions are reportedly affected by a HTTP header injection vulnerability. An attacker could exploit this in order to launch various attacks including cross-site scripting, and cross-site request forgery.
SolutionDisable this service if it is not needed.