| VID |
21008 |
| Severity |
20 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
/admin-serv/config/admpw file is read. It has the code password about the Netscape manager server. Even though it is coded, this password is possible to be cracked by continuous attempts.
* References:
http://www.iss.net/security_center/static/4971.php
http://online.securityfocus.com/archive/1/69544
http://www.securiteam.com/securitynews/5OR040A1UG.html |
| Recommendation |
Set not to read the permission about this file, and in case of need, stop the netscape administrative server |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
