ManageEngine ServiceDesk Plus User and Domain Enumeration

medium Nessus Plugin ID 86444

Language:

Synopsis

The remote web server is affected by an information disclosure vulnerability.

Description

The installed version of ManageEngine ServiceDesk Plus running on the remote web server is affected by an information disclosure vulnerability due to a flaw in the /servlet/AJaxServlet script that is triggered when handling a request involving the 'checkUser' or 'searchLocalAuthDomain' actions. An unauthenticated, remote attacker can exploit this, via repeated requests to AJaxDomainServlet, to enumerate arbitrary user names and domains.

Solution

Upgrade to ManageEngine ServiceDesk Plus version 9.0 build 9031 or above and disable domain filtering for users.

Plugin Details

Severity: Medium

ID: 86444

File Name: manageengine_servicedesk_user_domain_enum.nasl

Version: 1.7

Type: remote

Family: CGI abuses

Published: 10/20/2015

Updated: 1/19/2021

Supported Sensors: Nessus

Vulnerability Information

CPE: cpe:/a:manageengine:servicedesk_plus

Required KB Items: www/manageengine_servicedesk

Exploit Available: true

Exploit Ease: Exploits are available

Exploited by Nessus: true

Patch Publication Date: 12/23/2014

Vulnerability Publication Date: 1/23/2015

Detections

Analytics