📄 ipswitch_imail_bo.nasl

📁 漏洞扫描源码,可以扫描linux,windows,交换机路由器

💻 NASL

字号:

## This script was written by David Maciejak <david dot maciejak at kyxar dot fr>## This script is released under the GNU GPL v2if(description){ script_id(14684); script_cve_id("CVE-2004-2422", "CVE-2004-2423"); script_bugtraq_id(11106); if (defined_func("script_xref")) {   script_xref(name:"OSVDB", value:"9552");   script_xref(name:"OSVDB", value:"9553");   script_xref(name:"OSVDB", value:"9554"); } script_version("$Revision: 38 $");  name["english"] = "ipswitch IMail DoS"; script_name(english:name["english"]);  desc["english"] = "The remote host is running IMail web interface.  This version contains multiple buffer overflows.An attacker could use these flaws to remotly crash the service accepting requests from users, or possibly execute arbitrary code.Solution : Upgrade to IMail 8.13 or newer.Risk factor : High"; script_description(english:desc["english"]);  summary["english"] = "Checks for version of IMail web interface"; summary["francais"] = "V閞ifie la version de l'interface web de IMail";  script_summary(english:summary["english"], francais:summary["francais"]);  script_category(ACT_GATHER_INFO);  script_copyright(english:"This script is Copyright (C) 2004 David Maciejak");  family["english"] = "Denial of Service"; script_family(english:family["english"]); script_dependencie("find_service.nes", "no404.nasl", "http_version.nasl"); script_require_ports("Services/www", 80); exit(0);}# The script code starts hereinclude ("http_func.inc");port = get_http_port(default:80);if (! get_port_state(port)) exit(0);banner = get_http_banner(port: port);if ( ! banner ) exit(0);serv = egrep(string: banner, pattern: "^Server:.*");if(ereg(pattern:"^Server:.*Ipswitch-IMail/([1-7]\..*|(8\.(0[0-9]?[^0-9]|1[0-2][^0-9])))", string:serv))   security_hole(port);

⌨️ 快捷键说明

复制代码 Ctrl + C

搜索代码 Ctrl + F

全屏模式 F11

切换主题 Ctrl + Shift + D

显示快捷键 ?

增大字号 Ctrl + =

减小字号 Ctrl + -