This script is Copyright (C) 1999-2015 Tenable Network Security, Inc.
The finger service running on the remote host has an information
It is possible to force the remote finger daemon to display a list of
accounts that have never been used by issuing the request :
A remote attacker could use this information to guess which operating
system is running or mount further attacks against these accounts.
See also :
Disable or filter access to the finger daemon.
Risk factor :
Medium / CVSS Base Score : 5.0
Nessus Plugin ID: 10072 (finger_dot.nasl)
CVE ID: CVE-1999-0198
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.