2 matches found
Ipswitch WhatsUp Professional Authentication bypass detection
The remote web server is affected by an authentication bypass flaw. Description : The remote host is running Ipswitch WhatsUp Professional, which is used to monitor states of applications, services and hosts. The version of WhatsUp Professional installed on the remote host allows an attacker to...
CVE-2006-2531
CVE-2006-2531 affects Ipswitch WhatsUp Professional (2006). The flaw enables an unauthenticated remote attacker to bypass authentication by spoofing HTTP headers, specifically setting User-Agent to “Ipswitch/1.0” and User-Application to “NmConsole.” The root cause is that authentication relies on...