 |
Inicial ▼ Bookkeeping
Online ▼ Auditorias ▼
DNS
Administrado ▼
Acerca de DNS
Ordenar/Renovar
Preguntas Frecuentes
AUP
Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password Monitoreo
de Redes ▼
Enterprise
Avanzado
Estándarr
Prueba
Preguntas Frecuentes
Resumen de Precio/Funciones
Ordenar
Muestras
Configure/Status Alert Profiles | ||
| ID de Prueba: | 1.3.6.1.4.1.25623.1.0.10988 |
| Categoría: | General |
| Título: | Netware NDS Object Enumeration |
| Resumen: | This host is a Novell Netware (eDirectory) server, and has browse; rights on the PUBLIC object. |
| Descripción: | Summary: This host is a Novell Netware (eDirectory) server, and has browse rights on the PUBLIC object. Vulnerability Impact: It is possible to enumerate all NDS objects, including users, with crafted queries. An attacker can use this to gain information about this host. Solution: The NDS object PUBLIC should not have Browse rights the tree should be restricted to authenticated users only. Removing Browse rights from the object will fix this issue. If this is an external system it is recommended that access to port 524 is blocked from the Internet. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N |
| Copyright | Copyright (C) 2002 Digital Defense, Inc |
| Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora. |