Code: p1313 Severity: Warning
Description: This event is generated when an attempt is made to access the executable file WindMail.exe using a web connection. Impact: Remote attackers could subvert the WindMail mailer to read or execute arbitrary files on the web server Corrective: Look at the packet to determine whether a request was made via an HTTP GET for the windmail.exe application. If so, determine whether the attacked web server had windmail.exe on it.
|
