Lucene search
Copyright (C) 2004 Michael J. RichardsonOPENVAS:136141256231014718HistoryNov 03, 2005 - 12:00 a.m.
Cisco bug ID CSCdu35577 (Web Check)
2005-11-0300:00:00
Copyright (C) 2004 Michael J. Richardson
plugins.openvas.org
32
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
6.5 Medium
AI Score
Confidence
Low
0.007 Low
EPSS
Percentile
80.8%
The remote VPN concentrator gives out too much information in application
layer banners.
An incorrect page request provides the specific version of software installed.
This vulnerability is documented as Cisco bug ID CSCdu35577.
# SPDX-FileCopyrightText: 2004 Michael J. Richardson
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.14718");
script_version("2023-08-03T05:05:16+0000");
script_tag(name:"last_modification", value:"2023-08-03 05:05:16 +0000 (Thu, 03 Aug 2023)");
script_tag(name:"creation_date", value:"2005-11-03 14:08:04 +0100 (Thu, 03 Nov 2005)");
script_cve_id("CVE-2002-1094");
script_tag(name:"cvss_base", value:"5.0");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:N/A:N");
script_name("Cisco bug ID CSCdu35577 (Web Check)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2004 Michael J. Richardson");
script_family("CISCO");
script_dependencies("find_service.nasl", "httpver.nasl", "global_settings.nasl");
script_require_ports("Services/www", 80);
script_exclude_keys("Settings/disable_cgi_scanning");
script_xref(name:"URL", value:"http://www.cisco.com/warp/public/707/vpn3k-multiple-vuln-pub.shtml");
script_xref(name:"URL", value:"http://www.securityfocus.com/bid/5624");
script_tag(name:"solution", value:"The vendor has released updates. Please see the references for more information.");
script_tag(name:"summary", value:"The remote VPN concentrator gives out too much information in application
layer banners.
An incorrect page request provides the specific version of software installed.
This vulnerability is documented as Cisco bug ID CSCdu35577.");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"remote_banner");
exit(0);
}
include("http_func.inc");
include("http_keepalive.inc");
include("port_service_func.inc");
port = http_get_port(default:80);
req = http_get(item:"/this_page_should_not_exist.htm", port:port);
res = http_keepalive_send_recv(port:port, data:req);
if(!res)
exit(0);
if(ereg(pattern:"^HTTP/[0-9]\.[0-9] 200 ", string:res) && "<b>Software Version:</b> >< res" && "Cisco Systems, Inc./VPN 3000 Concentrator Version" >< res) {
report = "The following software version was identified: " + egrep(pattern:"Cisco Systems, Inc./VPN 3000 Concentrator Version", string:res);
security_message(port:port, data:report);
exit(0);
}
exit(99);
Related
cvelist
cvelist
CVE-2002-1094
2002-09-10 04:00:00
nvd
nvd
CVE-2002-1094
2002-10-04 04:00:00
cve
cve
CVE-2002-1094
2002-10-04 04:00:00
nessus
nessus
openvas
openvas
Cisco bug ID CSCdu35577 (Web Check)
2005-11-03 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
6.5 Medium
AI Score
Confidence
Low
0.007 Low
EPSS
Percentile
80.8%
Related for OPENVAS:136141256231014718