Nessus Plugin #10147
Plugin Index
Note: This file has been created from a
downloaded version of the Nessus Plugins
from
http://www.nessus.org/.
Therefore, the information here can be outdated.
A Nessus Daemon is running
- Family:
- Service detection
- Category:
- infos
- Copyright:
- This script is Copyright (C) 1999 SecuriTeam
- Summary:
- A Nessus Daemon is running
- Version:
- $Revision: 1.21 $
- Cve_id:
- -
- Bugtraq_id:
- -
- Xrefs:
- -
- Description:
- The port TCP:3001 or TCP:1241 is open, and since this is the default port
for the Nessus daemon, this usually indicates a Nessus daemon is running,
and open for the outside world.
An attacker can use the Nessus Daemon to scan other site, or to further
compromise the internal network on which nessusd is installed on.
(Of course the attacker must obtain a valid username and password first, or
a valid private/public key)
Solution: Block those ports from outside communication, or change the
default port nessus is listening on.
Risk factor : Medium
Generiert am 27.04.2005 um 18:49:54 Uhr.