Hi friends,
to my mind the log message line 118 qnd 119 :
report = string("MS08-067: Failed to perform Clear Text based
authentication.");
log_message(data:report, port:port);
is ambiguous and bring people to the wrong way when you got in the report :
<result id="b5c2251e-1db9-4df5-b546-dfd9c45e43dc">
<subnet>10.1.0.1</subnet>
<host>10.1.0.1</host>
<port>microsoft-ds (445/tcp)</port>
<nvt oid="1.3.6.1.4.1.25623.1.0.900056">
<name>Vulnerability in Server Service Could Allow Remote Code
Execution (958644)</name>
<cvss_base>10.0</cvss_base>
<risk_factor>Critical</risk_factor>
<cve>CVE-2008-4250</cve>
<bid>31874</bid>
</nvt>
<threat>Log</threat>
<description>MS08-067: Failed to perform Clear Text based
authentication.
CVE : CVE-2008-4250
BID : 31874
</description>
You may think you have a hole, when not.
can this log message become a debug message ?
My 2 cents.
_______________________________________________
Openvas-plugins mailing list
[email protected]
http://lists.wald.intevation.org/mailman/listinfo/openvas-plugins
