
Fix Security Vulnerabilities on server
- or -
Post a project like this4805
£25(approx. $33)
- Posted:
- Proposals: 2
- Remote
- #241344
- Awarded
Description
Experience Level: Intermediate
we need a system administrator to correct a couple of simple issues on our server. Namely the two Security Vulnerabilities issues described below. This should be a simple job of appying a patch and closing a remote port on the server.
Please get in touch if you are able to complete this asap. Many thanks and Kind Regards,
Lorenzo
1. Title: vulnerable web program (OutStart Participate) Impact: A remote attacker could execute
arbitrary commands, create or overwrite files, or view files or directories on the web server. Data
Sent: GET /pe/repository/displaynavigator.jsp?rootFolder=101 HTTP/1.0 Host: www.vinopic.com
User-Agent: Mozilla/4.0 Connection: Keep-alive Data Received: And:
jQuery(document).ready(function(){ And: H.write(l()); Resolution: 03/16/05 CVE 2005-0685
The displaynavigator.jsp, renamepopup.jsp, and displaydeletenavigator.jsp programs in OutStart
Participate Enterprise are affected by vulnerabilities. By manipulating certain parameters in a
URL request, a remote attacker is able to gain unauthorized read, rename, or delete access to
certain directories. Resolution: Contact OutStart for a patch. Risk Factor: High/ CVSS2 Base
Score: 7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P) CVE: CVE-2005-0685 BID: 12752
2. Title: Open Microsoft SQL Server database port Synopsis: An open Microsoft SQL Server
database port was detected Impact: Open Microsoft SQL Server database port Resolution:
Disable public facing access to your Microsoft SQL Server database If you feel that you have
received this notice in error, please contact SecurityMetrics support. Risk Factor: Medium/
CVSS2 Base Score: 4.0
Please get in touch if you are able to complete this asap. Many thanks and Kind Regards,
Lorenzo
1. Title: vulnerable web program (OutStart Participate) Impact: A remote attacker could execute
arbitrary commands, create or overwrite files, or view files or directories on the web server. Data
Sent: GET /pe/repository/displaynavigator.jsp?rootFolder=101 HTTP/1.0 Host: www.vinopic.com
User-Agent: Mozilla/4.0 Connection: Keep-alive Data Received: And:
jQuery(document).ready(function(){ And: H.write(l()); Resolution: 03/16/05 CVE 2005-0685
The displaynavigator.jsp, renamepopup.jsp, and displaydeletenavigator.jsp programs in OutStart
Participate Enterprise are affected by vulnerabilities. By manipulating certain parameters in a
URL request, a remote attacker is able to gain unauthorized read, rename, or delete access to
certain directories. Resolution: Contact OutStart for a patch. Risk Factor: High/ CVSS2 Base
Score: 7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P) CVE: CVE-2005-0685 BID: 12752
2. Title: Open Microsoft SQL Server database port Synopsis: An open Microsoft SQL Server
database port was detected Impact: Open Microsoft SQL Server database port Resolution:
Disable public facing access to your Microsoft SQL Server database If you feel that you have
received this notice in error, please contact SecurityMetrics support. Risk Factor: Medium/
CVSS2 Base Score: 4.0
Lorenzo I.
0% (0)Projects Completed
1
Freelancers worked with
1
Projects awarded
33%
Last project
3 Dec 2010
United Kingdom
New Proposal
Login to your account and send a proposal now to get this project.
Log inClarification Board Ask a Question
-
There are no clarification messages.
We collect cookies to enable the proper functioning and security of our website, and to enhance your experience. By clicking on 'Accept All Cookies', you consent to the use of these cookies. You can change your 'Cookies Settings' at any time. For more information, please read ourCookie Policy
Cookie Settings
Accept All Cookies