Title: Avirt Gateway Suite Telnet Proxy Remote SYSTEM Access Vulnerability
Severity: CRITICAL
Description:
Avirt Gateway Suite is a product combining the functionality of Avirt Gateway and Avirt Mail. It is designed as a single solution for collection of client machines sharing a single internet connection. It is available for the Microsoft Windows operating system.
A vulnerability exists in the Gateway Suite. By default, a telnet proxy server is installed and listening on port 23. It is installed as a windows service when possible.
Any user within the allowable IP range for the server may make a direct telnet connection. Once connected, it is possible to browse the server directory structure through use of the 'dir' and 'ls' commands, or to open a command prompt with the 'dos' command. As the server runs as SYSTEM, this could lead to a total compromise of the vulnerable server.
Affected Products:
- Avirt Gateway Suite 4.2.0
References:
- Avirt: Avirt Homepage
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
