AOLServer Multiple Remote Vulnerabilities

critical Nessus Network Monitor Plugin ID 2775

Synopsis

The remote host is missing a critical security patch or upgrade.

Description

The remote host is running AOLServer, a web server from AOL. This version of AOLServer is vulnerable to multiple remote overflows. An attacker exploiting these flaws would be able to execute arbitrary code on the remote server.

Solution

Upgrade or patch according to vendor recommendations.

Plugin Details

Severity: Critical

ID: 2775

Family: Web Servers

Published: 3/25/2005

Updated: 3/6/2019

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 8.3

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS v3

Risk Factor: Critical

Base Score: 9.8

Temporal Score: 9.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:aol:aol_server

Reference Information

CVE: CVE-2001-0205, CVE-2001-1067, CVE-2002-0100, CVE-2002-0586

BID: 3230, 3791, 4535, 2343