On Thu, Sep 21, 2006 at 01:08:50PM -0400, anon anon wrote:
There are three nasl to check for CVE-2006-4339. However, they are all
local checks.
Any plans for a remote test for this vuln?
No. I don't see a good way to do that - a banner check of, say, Apache
would be prone to false-positives, and you can't generally exploit the
flaw without some knowledge of the certificate authorities used by a
remote service.
George
--
[EMAIL PROTECTED]
_______________________________________________
Nessus mailing list
[email protected]
http://mail.nessus.org/mailman/listinfo/nessus
