Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. Nessus>
  3. users
Medium Warning Marking and Count
Bob.Schommer at bwaycorp
Oct 29, 2008, 8:30 AM
Post #1 of 3 (2275 views)
Permalink
Counts and Shows as a Medium Risk



SMB shares enumeration


Synopsis :

It is possible to enumerate remote network shares.

Description :

By connecting to the remote host using a NULL (or guest) session
Nessus was able to enumerate the network share names.

Risk factor :

None

Plugin output :

Here is the list of the SMB shares of this host :

E$
WYSE
CITRIXApplications
IPC$
D$
ADMIN$
C$
ITS$


Nessus ID : 10395
<http://www.nessus.org/plugins/index.php?view=single&id=10395>





Robert A. "Bob" Schommer

Audit & Security Officer

Bway Corporation

Desk 770-645-4882

Cell 404-769-1966

bob.schommer@bwaycorp.com






This e-mail message is for the sole use of the intended recipient(s). It may contain confidential information, legally privileged information or other information subject to legal restrictions. If you are not the intended recipient, you may not read it, copy it, use it, or disclose it. Please notify the sender by replying to this message, and then delete or destroy all copies of this message in all media. Also, this email message is not an offer or acceptance, and it is not intended to be all or part of an agreement.
Re: Medium Warning Marking and Count [ In reply to ]
theall at tenablesecurity
Oct 29, 2008, 8:57 AM
Post #2 of 3 (2168 views)
Permalink
On Oct 29, 2008, at 11:30 AM, Bob Schommer wrote:

> Counts and Shows as a Medium Risk
...
> Risk factor :
>
> None


Thanks for pointing this out. I've updated the plugin so it's reported
as a note rather than a warning. The new revision should become
available through the plugin feed in a couple of hours.

George
--
theall@tenablesecurity.com



_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
Re: Medium Warning Marking and Count [ In reply to ]
raleel at gmail
Oct 29, 2008, 9:02 AM
Post #3 of 3 (2168 views)
Permalink
I believe this is a medium because you can enumerate without any real
authentication.

It also does reveal some information about the host, like that it appears to
be a citrix server serving wyse thin clients

On Wed, Oct 29, 2008 at 11:30 AM, Bob Schommer <Bob.Schommer@bwaycorp.com>wrote:

> Counts and Shows as a Medium Risk
>
>
>
> *SMB shares enumeration*
>
>
> *Synopsis :*
>
> It is possible to enumerate remote network shares.
>
> *Description :*
>
> By connecting to the remote host using a NULL (or guest) session
> Nessus was able to enumerate the network share names.
>
> *Risk factor :*
>
> None
>
> *Plugin output :*
>
> Here is the list of the SMB shares of this host :
>
> E$
> WYSE
> CITRIXApplications
> IPC$
> D$
> ADMIN$
> C$
> ITS$
>
>
> Nessus ID : 10395<http://www.nessus.org/plugins/index.php?view=single&id=10395>
>
>
>
>
>
> *Robert A. "Bob" Schommer*
>
> Audit & Security Officer
>
> Bway Corporation
>
> Desk 770-645-4882
>
> Cell 404-769-1966
>
> *bob.schommer@bwaycorp.com*
>
>
>
>
>
> This e-mail message is for the sole use of the intended recipient(s). It
> may contain confidential information, legally privileged information or
> other information subject to legal restrictions. If you are not the intended
> recipient, you may not read it, copy it, use it, or disclose it. Please
> notify the sender by replying to this message, and then delete or destroy
> all copies of this message in all media. Also, this email message is not an
> offer or acceptance, and it is not intended to be all or part of an
> agreement.
>
> _______________________________________________
> Nessus mailing list
> Nessus@list.nessus.org
> http://mail.nessus.org/mailman/listinfo/nessus
>



--
Doug Nordwall
Unix, Network, and Security Administrator
You mean the vision is subject to low subscription rates?!!? - Scott Stone,
on MMORPGs

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal