|
Family: Misc. --> Category: infos
Cheops NG without password Vulnerability Scan
Vulnerability Scan Summary Cheops NG agent is running without authentication
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote service does not require a password for access.
Description :
The Cheops NG agent on the remote host is running without
authentication. Anyone can connect to this service and use it to map
your network, port scan machines and identify running services.
Solution:
Restrict access to this port or enable authentication by starting the
agent using the '-p' option.
Threat Level:
Medium / CVSS Base Score : 5
(AV:R/AC:L/Au:NR/C:P/A:N/I:P/B:C)
Click HERE for more information and discussions on this network vulnerability scan.
|