|
Family: Misc. --> Category: infos
Kerberos PingPong attack Vulnerability Scan
Vulnerability Scan Summary Searches for the existence of a bad krb server
Detailed Explanation for this Vulnerability Test
The remote host is running a kerberos server, which seems to be vulnerable
to a 'ping-pong' attack.
When contacted on the UDP port, this service always respond, even
to malformed requests.
An easy attack is 'ping-pong' in which a possible hacker spoofs a packet between
two machines running this service. This will cause them to spew characters at
each other, slowing the machines down and saturating the network.
Solution : Disable this service if you do not use it.
Threat Level: Low
Click HERE for more information and discussions on this network vulnerability scan.
|