HighCheck or Attack Name: rshequiv
Sites that have a '+' or other wildcard character in the hosts.equiv file can be accessed from remote without the attacker having to know any system passwords.
Modify your host's trust files to not include any wildcard characters. If possible, don't use Berkley-style trust relationships, but instead use a more secure solution, such as SSH.
CERT Advisory CA-91.12, Trusted Hosts Configuration Vulnerability, http://www.cert.org/advisories/CA-91.12.Trusted.Hosts.Configuration.vulnerability.html
