Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
Avotus mm File Retrieval attempt
Information
Severity
Severity
Medium
Family
Family
Remote file access
CVSSv2 Base
CVSSv2 Base
6.8
CVSSv2 Vector
CVSSv2 Vector
AV:N/AC:M/Au:N/C:P/I:P/A:P
Solution Type
Solution Type
Vendor Patch
Created
Created
18 years ago
Modified
Modified
5 years ago
Summary
The script attempts to force the remote Avotus CDR mm service to include the file /etc/passwd across the network.
Solution
Solution
The vendor has provided a fix for this issue to all customers. The fix will be included in future shipments and future versions of the product. If an Avotus customer has any questions about this problem, they should contact support@avotus.com.