ID de Prueba:	1.3.6.1.4.1.25623.1.0.902432
Categoría:	Web application abuses
Título:	SmarterMail Multiple Vulnerabilities (May 2011)
Resumen:	SmarterMail is prone to multiple vulnerabilities.
Descripción:	Summary: SmarterMail is prone to multiple vulnerabilities. Vulnerability Insight: Multiple flaws are present in the application. More detail is available from the referenced advisory. Vulnerability Impact: Successful exploitation could allow attackers to conduct cross-site scripting (XSS), command execution and directory traversal attacks. Affected Software/OS: SmarterTools SmarterMail versions 6.0 and prior. Solution: Upgrade to SmarterTools SmarterMail 8.0 or later. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2011-2148 CERT/CC vulnerability note: VU#240150 http://www.kb.cert.org/vuls/id/240150 http://www.kb.cert.org/vuls/id/MORO-8GYQR4 http://xss.cx/examples/smarterstats-60-oscommandinjection-directorytraversal-xml-sqlinjection.html.html XForce ISS Database: smarterstats-frmsite-command-exec(67834) https://exchange.xforce.ibmcloud.com/vulnerabilities/67834 Common Vulnerability Exposure (CVE) ID: CVE-2011-2149 XForce ISS Database: smarterstats-multiple-sql-injection(67833) https://exchange.xforce.ibmcloud.com/vulnerabilities/67833 Common Vulnerability Exposure (CVE) ID: CVE-2011-2150 XForce ISS Database: smarterstats-string-data-dos(67832) https://exchange.xforce.ibmcloud.com/vulnerabilities/67832 Common Vulnerability Exposure (CVE) ID: CVE-2011-2151 http://xss.cx/examples/exploits/stored-reflected-xss-cwe79-smarterstats624100.html XForce ISS Database: smarterstats-password-info-disc(67831) https://exchange.xforce.ibmcloud.com/vulnerabilities/67831 Common Vulnerability Exposure (CVE) ID: CVE-2011-2152 XForce ISS Database: smarterstats-external-links-info-disc(67830) https://exchange.xforce.ibmcloud.com/vulnerabilities/67830 Common Vulnerability Exposure (CVE) ID: CVE-2011-2153 XForce ISS Database: smarterstats-login-information-disclosure(67829) https://exchange.xforce.ibmcloud.com/vulnerabilities/67829 Common Vulnerability Exposure (CVE) ID: CVE-2011-2154 XForce ISS Database: smarterstats-login-info-disc(67828) https://exchange.xforce.ibmcloud.com/vulnerabilities/67828 Common Vulnerability Exposure (CVE) ID: CVE-2011-2155 XForce ISS Database: smarterstats-login-security-bypass(67827) https://exchange.xforce.ibmcloud.com/vulnerabilities/67827 Common Vulnerability Exposure (CVE) ID: CVE-2011-2156 XForce ISS Database: smarterstats-admin-info-disclosure(67826) https://exchange.xforce.ibmcloud.com/vulnerabilities/67826 Common Vulnerability Exposure (CVE) ID: CVE-2011-2157 XForce ISS Database: smarterstats-reportsettings-info-disc(67825) https://exchange.xforce.ibmcloud.com/vulnerabilities/67825 Common Vulnerability Exposure (CVE) ID: CVE-2011-2158 XForce ISS Database: smarterstats-contenttype-header-unspecified(67824) https://exchange.xforce.ibmcloud.com/vulnerabilities/67824 Common Vulnerability Exposure (CVE) ID: CVE-2011-2159 XForce ISS Database: smarterstats-contenttype-unspecified(67823) https://exchange.xforce.ibmcloud.com/vulnerabilities/67823
Copyright	Copyright (C) 2011 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.