Communigate Pro < 3.2 HTTP Configuration Port Remote Overflow

high Nessus Network Monitor Plugin ID 1502

Synopsis

The remote host is running Communigate Pro version 3.0 or 3.1.

Description

The remote host is running Communigate Pro version 3.0 or 3.1. There is a flaw in this version which may allow an attacker to execute arbitrary code on this host.

Solution

Upgrade to CommunigatePro 3.2 or higher.

See Also

http://archives.neohapsis.com/archives/bugtraq/1999-q4/0209.html

Plugin Details

Severity: High

ID: 1502

Family: Web Servers

Published: 8/18/2004

Updated: 3/6/2019

Nessus ID: 10048

Risk Information

VPR

Risk Factor: Low

Score: 3.6

CVSS v2

Risk Factor: High

Base Score: 7.5

Temporal Score: 6.2

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS v3

Risk Factor: High

Base Score: 7.3

Temporal Score: 6.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:stalker:communigate_pro

Reference Information

CVE: CVE-1999-0865

BID: 860