Finjan SurfinGate ControlPort CONNECT restart command 1.1
 
Plugin ID133
Plugin nameFinjan SurfinGate ControlPort CONNECT restart command
Plugin filenameFinjan SurfinGate ControlPort CONNECT restart command.plugin
Plugin filesize2981 bytes
Plugin familyFirewalls
Plugin created nameMarc Ruef
Plugin created emailmarc dot ruef at computec dot ch
Plugin created webhttp://www.computec.ch
Plugin created companycomputec.ch
Plugin created date2004/09/02
Plugin updated nameMarc Ruef
Plugin updated emailmarc dot ruef at computec dot ch
Plugin updated webhttp://www.computec.ch
Plugin updated companycomputec.ch
Plugin updated date2004/11/13
Plugin version1.1
Plugin changelogCorrected the plugin structure and added the accuracy values in 1.1
Plugin protocoltcp
Plugin port3128
Plugin procedure detectionopen|send CONNECT localhost:3141 HTTP/1.0\n\n|sleep|close|pattern_exists Proxy-agent: Finjan
Plugin detection accuracy85
Plugin commentThis plugin was written with the ATK Attack Editor and was inspired by Nessus plugin.
Bug affectedFinjan SurfinGate
Bug not affectedPerhaps Finjan VItal Security or other proxy solutions
Bug vulnerability classWeak Authentication
Bug descriptionThe target system is running Finjan SurfinGate, a commercial proxy solution. It is possible to use this proxy and force it to connect to itself,to then issue administrative commands to this service. An attacker may use this flaw to force this proxy to restart continuously, although other administrative commands might be executable.
Bug solutionUpgrade to the latest software version which is not vulnerable anymore. Limit unwanted connections to the ControlPort 3141 with firewalling.
Bug fixing timeApprox. 30 minutes
Bug exploit availabilityYes
Bug exploit urlhttp://www.nessus.org
Bug remoteYes
Bug localYes
Bug severityMedium
Bug popularity6
Bug simplicity6
Bug impact7
Bug risk6
Bug Nessus riskMedium
Bug check toolsNessus and ATK is able to do the same and further check.
Source SecurityFocus BID9478
Source Nessus ID12036
Source LiteratureHacking Exposed: Network Security Secrets & Solutions, Stuart McClure, Joel Scambray and George Kurtz, February 25, 2003, 4th Edition, McGraw-Hill Osborne Media, ISBN 0072227427
Source Misc.http://www.computec.ch

This file was generated by the Attack Tool Kit (ATK), the open-sourced security scanner and exploiting framework.