| VID |
18083 |
| Severity |
40 |
| Port |
25 |
| Protocol |
TCP |
| Class |
Proxy |
| Detailed Description |
The relevant host is running a version of CCProxy server prior to 6.2. Proxy Server CCProxy lets all computers on the LAN access Internet through one single Internet connection, as an application proxy supporting many protocols (Telnet, FTP, WWW, and etc). CCProxy versions prior to 6.2 are vulnerable to a remote buffer overflow vulnerability, caused by improper bounds checking in handling HTTP requests. A remote attacker could exploit this vulnerability to execute arbitrary code on the affected system.
* Note: This check solely relied on the banner of the remote SMTP server to assess this vulnerability, so this might be a false positive.
* References:
http://secunia.com/advisories/13085/
http://www.securiteam.com/exploits/6E0032KBPM.html
* Platforms Affected:
Youngzsoft, CCProxy versions prior to 6.2
Microsoft Windows Any version |
| Recommendation |
Upgrade to the latest version of CCProxy (6.2 or later), available from the Proxy Server CCProxy Web page at http://www.youngzsoft.net/ccproxy/ |
| Related URL |
CVE-2004-2416 (CVE) |
| Related URL |
11666 (SecurityFocus) |
| Related URL |
18012 (ISS) |
|
