Multiple Unix Netstat Service Remote Information Disclosure

This script is Copyright (C) 1999-2012 Tenable Network Security, Inc.


Synopsis :

The remote service is vulnerable to an information disclosure flaw.

Description :

The remote host is running a 'netstat' service on this port.

The 'netstat' service provides useful information to an attacker, since
it gives away the state of the active connections. It is recommended that
you disable this service if you do not use it.

Solution :

Disable the service by commenting out the 'netstat' line
in /etc/inetd.conf and restart the inetd process.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N)

Family: Misc.

Nessus Plugin ID: 10157 ()

Bugtraq ID:

CVE ID: CVE-1999-0650