|
Family: General --> Category: infos
OS Identification Vulnerability Scan
Vulnerability Scan Summary Acertains the remote operating system
Detailed Explanation for this Vulnerability Test
This script attempts to identify the Operating System type and version by
various ways :
- If the remote host is a Windows host, it will attempt to acertain its
OS type by sending MSRPC packets on port 135 and guess the OS based on
the results
- If the remote host has an NTP client listening on port 123, this script will
try to ask for the operating system version this way
- Otherwise, this script acertains the remote operating system by sending more
or less incorrect ICMP requests using the techniques outlined in Ofir Arkin's
paper 'ICMP Usage In Scanning'.
A possible hacker may use this to identify the kind of the remote operating
system and gain further knowledge about this host.
See also : http://www.sys-security.com/html/projects/icmp.html (icmp os identification)
Threat Level: Low
Click HERE for more information and discussions on this network vulnerability scan.
|