Title: Tiny WinRoute Pro Authentication Vulnerability
Severity: MODERATE
Description:
Tiny WinRoute Pro is a firewall and internet router which enables networked machines to access the internet through a single connection. WinRoute has various features inculding a mail server which is compatible with most common internet protocols.
By default, an option called "Use Windows NT logon authentication" is set to "on". This option allows users to retrieve email from the WinRoute POP server using credentials from an NT domain. Unfortunately, all authentication information is recieved by the POP server in cleartext.
It is possible for an attacker eavesdropping on network traffic between a user and a POP server to retrieve the POP username and password. Because WinRoute allows NT Domain authentication information to be used, the security of a Windows Network can be compromised if the cleartext POP traffic is intercepted.
An attacker could use sniffed Windows domain usernames and passwords to access a Windows network and launch further attacks.
Affected Products:
- Tiny WinRoute 4.1.0
References:
- Tiny Software: WinRoute Product Home Page
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
