Red Hat Interchange INET Mode Detection

medium Nessus Plugin ID 11128

Synopsis

The remote host is running Red Hat Interchange.

Description

It seems that 'Red Hat Interchange' ecommerce and dynamic content management application is running in 'Inet' mode on this port.

Versions 4.8.5 and earlier are flawed and may disclose contents of sensitive files to attackers.

** Nessus neither checked Interchange version nor tried
** to exploit the vulnerability

Solution

Upgrade your software if necessary or configure it for 'Unix mode' communication only.

See Also

http://www.nessus.org/u?f3cc17f8

Plugin Details

Severity: Medium

ID: 11128

File Name: interchange_detect.nasl

Version: 1.23

Type: remote

Published: 9/21/2002

Updated: 6/1/2020

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 4.2

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 3.9

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Vulnerability Information

CPE: cpe:/a:interchange_development_group:interchange

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 8/13/2002

Reference Information

CVE: CVE-2002-0874

BID: 5453

DSA: 150