Vulnerability   
Search   
    Search 202850 CVE descriptions
and 87302 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.15931
Category:CGI abuses
Title:F-Secure Policy Manager Path Disclosure
Summary:NOSUMMARY
Description:Description:

The remote host is running F-Secure Policy Manager, a distributed
administration software allowing a system administrator to control applications
from a single web console.

There is a flaw in the file '/fsms/fsmsh.dll' which discloses the physical path
this application is under. An attacker may use the knowledge gained thru
this problem to set up more accurate elaborated attacks against the remote
host.

Solution : Upgrade to the newer version of this CGI
Risk factor : Low

Cross-Ref: BugTraq ID: 11869
Common Vulnerability Exposure (CVE) ID: CVE-2004-1223
http://www.securityfocus.com/bid/11869
Bugtraq: 20041209 =?iso-8859-1?Q?F-Secure_Policy_Manager_-__physical_path_disclosure?= (Google Search)
http://marc.info/?l=bugtraq&m=110262921306862&w=2
http://www.oliverkarow.de/research/f-secure.txt
XForce ISS Database: fsecure-url-obtain-information(18413)
https://exchange.xforce.ibmcloud.com/vulnerabilities/18413
CopyrightThis script is Copyright (C) 2004 Tenable Network Security

This is only one of 87302 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2021 E-Soft Inc. All rights reserved.