Nessus Plugin #10998
Plugin Index
Note: This file has been created from a
downloaded version of the Nessus Plugins
from
http://www.nessus.org/.
Therefore, the information here can be outdated.
Shiva LanRover Blank Password
- Family:
- Misc.
- Category:
- infos
- Copyright:
- This script is Copyright (C) 2002 Digital Defense Incorporated
- Summary:
- Checks for a blank password for the root account.
- Version:
- $Revision: 1.3 $
- Cve_id:
- CAN-1999-0508
- Bugtraq_id:
- -
- Xrefs:
- -
- Description:
The Shiva LanRover has no password set for the
root user account. An attacker is able to telnet
to this system and gain access to any phone lines
attached to this device. Additionally, the LanRover
can be used as a relay point for further attacks
via the telnet and rlogin functionality available
from the administration shell.
Solution: Telnet to this device and change the
password for the root account via the passwd
command. Please ensure any other accounts have
strong passwords set.
Risk factor : High
Generiert am 27.04.2005 um 18:49:54 Uhr.