|
Family: Service detection --> Category: infos
Detect talkd server port and protocol version Vulnerability Scan
Vulnerability Scan Summary Detect talkd server port and protocol version
Detailed Explanation for this Vulnerability Test
The remote host is running a 'talkd' daemon.
talkd is the server that notifies a user that someone else wants to initiate
a conversation with him.
Malicious hackers may use it to abuse legitimate users by conversing with
them with a false identity (social engineering). In addition to this, an
attacker may use this service to execute arbitrary code on your system.
Solution:
Disable talkd access from the network by adding the approriate rule on your
firewall. If you do not need talkd, comment out the relevant line in
/etc/inetd.conf and restart the inetd process.
See also : http://www.cert.org/advisories/CA-1997-04.html
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|