Chip 2007 January, February, March & April

home *** CD-ROM | disk | FTP | other *** search

/ Chip 2007 January, February, March & April / Chip-Cover-CD-2007-02.iso / Pakiet bezpieczenstwa / mini Pentoo LiveCD 2006.1 / mpentoo-2006.1.iso / modules / nessus-2.2.8.mo / usr / lib / nessus / plugins / timbuktu_detect.nasl < prev next >

Wrap

Text File | 2005-01-14 | 2KB | 63 lines

# # (C) Tenable Network Security # if(description) { script_id(15891); script_version ("$Revision: 1.2 $"); script_name(english:"Timbuktu Detection"); desc["english"] = " Timbuktu Pro seems to be running on this port. Timbuktu Pro can allow a remote user to take the control of this system (like the Terminal Services under Windows). See also : http://www.netopia.com Solution : Make sure to use strong passwords, disable this service if you do not use it Risk factor : None"; script_description(english:desc["english"]); summary["english"] = "Detect Timbuktu"; script_summary(english:summary["english"]); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2004 Tenable Network Security"); family["english"] = "General"; script_family(english:family["english"]); script_dependencie("find_service.nes"); script_require_ports("Services/unknown", 407); exit(0); } port = get_kb_item("Services/unknown"); if ( ! port ) port = 407; if ( ! get_port_state(port) ) exit(0); soc = open_sock_tcp(port); if ( ! soc ) exit(0); send(socket:soc, data:raw_string(0x00, 0x01, 0x00, 0x00, 0x00, 0x10, 0x00, 0x23, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00)); data = recv(socket:soc, length:6); if ( strlen(data) == 6 && ord(data[0]) == 1 && ord(data[1]) == 1 ) { length = ord(data[5]); data = recv(socket:soc, length:length); if ( strlen(data) != length ) exit(0); #length = ord(data[38]); #if ( length + 39 >= strlen(data) ) exit(0); #hostname = substr(data, 39, 39 + length - 1); security_note ( port ); }