Hi,
Here is a small patch to prevent false positives in the plugin:
Index: owa-anonymous.nasl
===================================================================
RCS file: /usr/local/cvs/nessus-plugins/scripts/owa-anonymous.nasl,v
retrieving revision 1.5
diff -r1.5 owa-anonymous.nasl
98c98
< if("/exchange/logonfrm.asp" >< r)
---
> if ("/exchange/logonfrm.asp" >< r)
100c100,109
< security_hole(port);
---
> soc = open_sock_tcp(port);
> req = http_get(item:"/exchange/logonfrm.asp", port:port);
> send(socket:soc, data:req);
> r = recv(socket:soc, length:4096);
> close(soc);
>
> if (!("This page has been disabled" >< r))
> {
> security_hole(port);
> }
Thanks
Noam Rathaus
http://www.BeyondSecurity.com
http://www.SecuriTeam.com
Here is a small patch to prevent false positives in the plugin:
Index: owa-anonymous.nasl
===================================================================
RCS file: /usr/local/cvs/nessus-plugins/scripts/owa-anonymous.nasl,v
retrieving revision 1.5
diff -r1.5 owa-anonymous.nasl
98c98
< if("/exchange/logonfrm.asp" >< r)
---
> if ("/exchange/logonfrm.asp" >< r)
100c100,109
< security_hole(port);
---
> soc = open_sock_tcp(port);
> req = http_get(item:"/exchange/logonfrm.asp", port:port);
> send(socket:soc, data:req);
> r = recv(socket:soc, length:4096);
> close(soc);
>
> if (!("This page has been disabled" >< r))
> {
> security_hole(port);
> }
Thanks
Noam Rathaus
http://www.BeyondSecurity.com
http://www.SecuriTeam.com