Fortech Proxy+ 2.30 Remote Administration Vulnerability

Fortech Proxy+ 2.30 Remote Administration Vulnerability

By default, Fortech Proxy+ can be remotely administered by any user possessing no authorization simply by connecting to http://target:4400/admin.

In addition, the telnet gateway is open by default which can accomodate for anonymous packet forwarding.