Insecure Access Control in Funk Software Proxy Host 3.x before 3.09A

Insecure Access Control in Funk Software Proxy Host 3.x before 3.09A

CVE-2002-0066 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Funk Software Proxy Host 3.x before 3.09A creates a Named Pipe that does not require authentication and is installed with insecure access control, which allows local and possibly remote users to use the Proxy Host's configuration utilities and gain privileges.

Learn more about our User Device Pen Test.