Kerio Mailserver Admin Service

The remote host appears to be running the Kerio Admin MailServer Admin Service on this por

Reporter	Title	Published	Views	Family All 11
Tenable Nessus	Kerio MailServer < 6.0.10 Unspecified Admin Web Interface DoS	2 May 200500:00	–	nessus
CVE	CVE-2005-1062	29 Apr 200504:00	–	cve
CVE	CVE-2005-1063	29 Apr 200504:00	–	cve
Cvelist	CVE-2005-1062	29 Apr 200504:00	–	cvelist
Cvelist	CVE-2005-1063	29 Apr 200504:00	–	cvelist
EUVD	EUVD-2005-1065	7 Oct 202500:30	–	euvd
EUVD	EUVD-2005-1066	7 Oct 202500:30	–	euvd
NVD	CVE-2005-1062	2 May 200504:00	–	nvd
NVD	CVE-2005-1063	29 Apr 200504:00	–	nvd
securityvulns	[CAN-2005-1063] Administration protocol abuse leads to Service and System Denial of Service	30 Apr 200500:00	–	securityvulns

# OpenVAS Vulnerability Test
# $Id: kerio_mailserver_admin_port.nasl 8023 2017-12-07 08:36:26Z teissa $
# Description: Kerio Mailserver Admin Service
#
# Authors:
# Javier Munoz Mellid <[email protected]>
#
# Copyright:
# Copyright (C) 2005 Javier Munoz Mellid
# Copyright (C) 2005 Secure Computer Group. University of A Coruna
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2,
# as published by the Free Software Foundation
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
#

tag_summary = "The administrative interface of a mail server is listening on
this port.

Description :

The remote host appears to be running the Kerio Admin MailServer
Admin Service on this port.";

tag_solution = "If this service is not needed, disable it or filter incoming traffic
to this port.";

if(description)
{
 script_id(18184);
 script_version("$Revision: 8023 $");
 script_tag(name:"last_modification", value:"$Date: 2017-12-07 09:36:26 +0100 (Thu, 07 Dec 2017) $");
 script_tag(name:"creation_date", value:"2005-11-03 14:08:04 +0100 (Thu, 03 Nov 2005)");
 script_bugtraq_id(13458);
 script_cve_id("CVE-2005-1062", "CVE-2005-1063");
 script_tag(name:"cvss_base", value:"7.5");
 script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:P/A:P");

 name = "Kerio Mailserver Admin Service";

 script_name(name);



 script_category(ACT_GATHER_INFO);
  script_tag(name:"qod_type", value:"remote_analysis");

 script_copyright("This script is Copyright (C) 2005 Javier Munoz Mellid");
 script_family("Service detection");
 script_dependencies("find_service.nasl");

 script_require_ports(44337);
 script_tag(name : "solution" , value : tag_solution);
 script_tag(name : "summary" , value : tag_summary);
 exit(0);
}

function kms_isWeakAdminProtocol(port)
{

  soc = open_sock_tcp(port);

  if (!soc) return 0;

  vuln = 1;

  for(i=0;i<5;i=i+1) {

        s = raw_string(0x01);
        send(socket:soc, data: s);

        if (!soc) vuln = 0;

        r = recv(socket: soc, length: 16);

        if (isnull(r)||(strlen(r)!=2)||(ord(r[0])!=0x01)||(ord(r[1])!=0x00))
        {

                vuln = 0;
                break;

        }

  }

  close(soc);

  if (vuln)
        return 1;
  else
        return 0;
}

port = 44337;           # default kms port

if (! get_port_state(port)) exit(0);

if (kms_isWeakAdminProtocol(port)) security_message(port);

exit(0);

07 Dec 2017 00:00Current

0.1Low risk

Vulners AI Score0.1

EPSS0.00739