Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

MailPost.exe Multiple Vulnerabilities

Medium

Synopsis

The remote host is vulnerable to multiple attack vectors.

Description

The remote host is using a version of TIPS MailPost that is vulnerable to several flaws. TIPS MailPost is an HTML form content email application designed to facilitate the emailing of HTML form data to a third party. There are various flaws in the remote version of this software : - A remote file enumeration vulnerability that may allow an attacker to determine if a file exists or not

- Two cross-site scripting vulnerabilities that may allow an attacker to steal the cookies of third-parties users

- An information disclosure vulnerability that may allow an attacker to gain more information about the remote host

Solution

Upgrade or patch according to vendor recommendations.