plugin 10396

Thu, 19 Jan 2006 12:48:27 -0800

Has anyone seen strange output from plugin 10396?  Nessus 2.2.5

 

I keep getting the share contents listed several times over like so:

 

results|10.0.1|10.0.1.189|microsoft-ds (445/tcp)|10396|Security Note|\nSysnopsis :\n\nIt is possible to access a network share.\n\nDescription :\n\nThe remote has one or many Windows shares that can be accessed\nthrough the Network with the given credentials.\nDepending on the share rights, it may allow an attacker to \nread/write confidential data.\n\nSolution :\n\nTo restrict access under Windows, open the explorer, do a right\nclick on each shares, go to the 'sharing' tab, and click on \n'permissions'\n\nRisk factor :\n\nNone\n\nPlugin output :\n\nThe following shares can be accessed as administrator :\n\n- C$  - (readable,writable)\n  + Content of this share :\nSUPPORT\nVALUEADD\nAUTOEXEC.BAT\nCONFIG.SYS\nDISCOVER\nBOOTLOG.TXT\nIBMTOOLS\nSUPPORT\nVALUEADD\nAUTOEXEC.BAT\nCONFIG.SYS\nDISCOVER\nBOOTLOG.TXT\nIBMTOOLS\nWINDOWS\nSUPPORT\nVALUEADD\nAUTOEXEC.BAT\nCONFIG.SYS\nDISCOVER\nBOOTLOG.TXT\nIBMTOOLS\nWINDOWS\nSUPPORT\nVALUEADD\nAUTOEXEC.BAT\nCONFIG.SYS\nDISCOVER\nBOOTLOG.TXT\nIBMTOOLS\nWINDOWS\nSUPPORT\nVALUEADD\nAUTOEXEC.BAT\nCONFIG.SYS\nDISCOVER\nBOOTLOG.TXT\nIBMTOOLS\nWINDOWS\nSUPPORT\nVALUEADD\nAUTOEXEC.BAT\nCONFIG.SYS\nDISCOVER\nBOOTLOG.TXT\nIBMTOOLS\nWINDOWS\nSUPPORT\nVALUEADD\nAUTOEXEC.BAT\nCONFIG.SYS\nDISCOVER\nBOOTLOG.TXT\nIBMTOOLS\nWINDOWS\nSUPPORT\nVALUEADD\nAUTOEXEC.BAT\nCONFIG.SYS\nDISCOVER\nBOOTLOG.TXT\nIBMTOOLS\nWINDOWS\nSUPPORT\nVALUEADD\nAUTOEXEC.BAT\nCONFIG.SYS\nDISCOVER\nBOOTLOG.TXT\nIBMTOOLS\nWINDOWS\nSUPPORT\nVALUEADD\nAUTOEXEC.BAT\nCONFIG.SYS\nDISCOVER\nBOOTLOG.TXT\nIBMTOOLS\nWINDOWS\nSUPPORT\nVALUEADD\nAUTOEXEC.BAT\nCONFIG.SYS\nDISCOVER\nBOOTLOG.TXT\nIBMTOOLS\nWINDOWS\nSUPPORT\nVALUEADD\nAUTOEXEC.BAT\nCONFIG.SYS\nDISCOVER\nBOOTLOG.TXT\nIBMTOOLS\nWINDOWS\nSUPPORT\nVALUEADD\nAUTOEXEC.BAT\nCONFIG.SYS\nDISCOVER\nBOOTLOG.TXT\n\n-

 

CVE : CVE-1999-0519, CVE-1999-0520\nBID : 8026\n
 

_______________________________________________
Nessus mailing list
[email protected]
http://mail.nessus.org/mailman/listinfo/nessus

Reply via email to