|
|
Family: Finger abuses --> Category: infos
Finger zero at host Information Disclosure Vulnerability Vulnerability Scan
Vulnerability Scan Summary
Finger 0@host feature
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote service is prone to information disclosure.
Description :
The remote host is running a 'finger' service that suffers from an
information disclosure vulnerability. Specifically, it allows an
unauthenticated attacker to display a list of accounts on the remote
host that have never been used. This list can help a possible hacker to
guess the operating system type and also focus his attacks.
Solution :
Filter access to this port, upgrade the finger server, or disable it
entirely.
Threat Level:
Low / CVSS Base Score : 2
(AV:R/AC:L/Au:NR/C:P/A:N/I:N/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|
