On Tue, Dec 09, 2003 at 01:52:57AM -0700, Jay Jacobson wrote: > Running the latest plugins on Nessus 2.0.9, I just got a false positive > from plugin #10123. The target is running imapd (uw-imapd, from University > of Washington) on a Linux box. However, plugin #10123 is about an Ipswitch > IMail vulnerability, and this is confirmed by both the CVE and BugTraq > references on the plugin.
Which version of imapd or what is its initial banner? Do you know how it was installed? As part of the scan, was imap_overflow.nasl (#10125) either explicitly enabled or implicitly run as a dependency? By the way, I see the plugin was updated yesterday to verify the server is Imail from its banner. George -- [EMAIL PROTECTED]
pgp00000.pgp
Description: PGP signature
_______________________________________________ Nessus mailing list [EMAIL PROTECTED] http://mail.nessus.org/mailman/listinfo/nessus
