ArGoSoft Mail Server Unspecified XSS

2004-12-20T00:00:00
ID ARGOSOFT_MULTIPLE_FLAWS2.NASL
Type nessus
Reporter Tenable
Modified 2018-08-08T00:00:00

Description

The remote host is running the ArGoSoft WebMail interface.

There is a flaw in this interface that could allow an attacker to conduct cross-site scripting (XSS) attacks against users. No further details have been provided.

Nessus solely relied on the banner of this service to issue this alert.

                                        
                                            #
# (C) Tenable Network Security, Inc.
#


include("compat.inc");

if (description)
{
 script_id(16012);
 script_version("1.20");
 script_bugtraq_id(12044);
 script_xref(name:"Secunia", value:"13571");
 
 script_name(english:"ArGoSoft Mail Server Unspecified XSS");
 script_summary(english:"Gets the version of the remote ArGoSoft server");
 script_set_attribute(attribute:"synopsis", value:
"The remote host is running a mail server that is affected by an HTML
injection vulnerability." );
 script_set_attribute(attribute:"description", value:
"The remote host is running the ArGoSoft WebMail interface.

There is a flaw in this interface that could allow an attacker
to conduct cross-site scripting (XSS) attacks against users.
No further details have been provided.

*** Nessus solely relied on the banner of this service to issue
*** this alert." );
 # http://web.archive.org/web/20051024234358/http://www.argosoft.com/mailserver/changelist.aspx
 script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?f6a37cff" );
 script_set_attribute(attribute:"solution", value:
"Upgrade to ArGoSoft 1.8.7.0 or newer." );
 script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:N");
 script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C");
 script_set_attribute(attribute:"exploitability_ease", value:"No exploit is required");
 script_set_attribute(attribute:"exploit_available", value:"true");
 script_cwe_id(20, 74, 79, 442, 629, 711, 712, 722, 725, 750, 751, 800, 801, 809, 811, 864, 900, 928, 931, 990);

 script_set_attribute(attribute:"plugin_publication_date", value: "2004/12/20");
 script_set_attribute(attribute:"vuln_publication_date", value: "2004/12/17");
 script_set_attribute(attribute:"patch_publication_date", value: "2004/12/17");
 script_cvs_date("Date: 2018/08/08 12:52:13");
script_set_attribute(attribute:"plugin_type", value:"remote");
script_end_attributes();

 
 script_category(ACT_GATHER_INFO);
 
 script_copyright(english:"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.");
 script_family(english:"CGI abuses : XSS");
 script_dependencie("http_version.nasl");
 script_require_ports("Services/www", 80);
 exit(0);
}

# Check starts here

include("http_func.inc");
include("http_keepalive.inc");
include("global_settings.inc");


port = get_http_port(default:80);

if(get_port_state(port))
{
 res = http_get_cache(item:"/", port:port);
 if( res == NULL ) exit(0);
 if((vers = egrep(pattern:".*ArGoSoft Mail Server.*Version", string:res)))
 {
  if(ereg(pattern:".*Version.*\((0\.|1\.([0-7]\.|8\.([0-6]\.])))\)", string:vers))
  {
    security_warning(port);
    set_kb_item(name: 'www/'+port+'/XSS', value: TRUE);
  }
 }
}