|
Family: Windows --> Category: infos
SMB enum services Vulnerability Scan
Vulnerability Scan Summary Enumerates the list of remote services
Detailed Explanation for this Vulnerability Test
Synopsis :
It is possible to enumerate remote services.
Description :
This test implements the SvcOpenSCManager() and SvcEnumServices()
calls to obtain, using the SMB protocol, the list of active services
of the remote host.
A possible hacker may use this feature to gain better knowledge of the remote
host.
Solution :
To prevent the listing of the services for being obtained, you should
either have tight login restrictions, so that only trusted users can
access your host, and/or you should filter incoming traffic to this port.
Threat Level:
Low / CVSS Base Score : 2
(AV:R/AC:H/Au:NR/C:P/A:N/I:N/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|