Vulnerabilities > CVE-2004-0950 - Information Disclosure vulnerability in Danware NetOp Remote Control

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

danware-data

nessus

NVD

Published: 2005-02-09

Updated: 2017-07-11

Summary

NetOp Host before 7.65 build 2004278 allows remote attackers to obtain sensitive hostname, username and local IP address information via (1) a NetOp HELO request, or (2) when responses are disabled, a "custom" HELO request.

Vulnerable Configurations

Part	Description	Count
Application	Danware_Data Danware Data Netop 6.0 Danware Data Netop 6.50 Danware Data Netop 7.0.1_Build2002-01-29 Danware Data Netop 7.50_Build2003-08-04 Danware Data Netop 7.60_Build2003-06-24	5

Nessus

NASL family	Misc.
NASL id	NETOP_INFOPUBLIC.NASL
description	This plugin displays the basic name and address information provided by NetOp products for easy network browsing. Administrators should disable displaying this information if they don
last seen	2020-06-01
modified	2020-06-02
plugin id	15767
published	2004-11-19
reporter	Copyright (C) 2004-2018 Corsaire Limited and Danware Data A/S.
source	https://www.tenable.com/plugins/nessus/15767
title	Danware NetOp Host HELO Request Remote Information Disclosure

Summary

Vulnerable Configurations

Nessus

References