On Mar 5, 2007, at 12:45 PM, Nelson, C.M. wrote:
Plugin 13852 v1.16 (tests windows task scheduler vulnerability) has
reported positive on a fully patch XP SP2 system. The problem reports
against port 1025. If I scan all ports I get the report, however, if I
ask for a scan of only port 1025 then plugin 13852 does not report.
After further investigation with Nelson, it turns out this indeed was
a real vulnerability.
Just a reminder though : a lot of the MSRPC checks need to connect to
port 135 to obtain the port on which the remote service is running.
Which means that if you perform while trying to disable port
scanning, do NOT check the option 'consider unscanned ports as
closed' as it will prevent nessusd from querying port 135.
-- Renaud
_______________________________________________
Nessus mailing list
[email protected]
http://mail.nessus.org/mailman/listinfo/nessus
