Pavuk < 0.928r3 Digest Authentication Remote Overflow (deprecated)

low Nessus Network Monitor Plugin ID 1776

Synopsis

The remote host is using a vulnerable version of Pavuk, a web spider.

Description

The remote host is using a version of Pavuk, a web spider, that is vulnerable to an authentication buffer overflow. An attacker can construct a malicious website that is designed to trigger the vulnerability and run arbitrary code on the client machine.

Solution

Upgrade to 0.928r3 or higher.

Plugin Details

Severity: Low

ID: 1776

Family: Web Clients

Published: 8/20/2004

Updated: 9/16/2018

Risk Information

VPR

Risk Factor: Medium

Score: 6.3

Reference Information

CVE: CVE-2004-1437

BID: 10797

Detections

Analytics