rexecd Service Detection

This script is Copyright (C) 1999-2016 Tenable Network Security, Inc.


Synopsis :

The rexecd service is running on the remote host.

Description :

The rexecd service is running on the remote host. This service is
design to allow users of a network to execute commands remotely.
However, rexecd does not provide any good means of authentication, so
it may be abused by an attacker to scan a third-party host.

Solution :

Comment out the 'exec' line in /etc/inetd.conf and restart the inetd
process.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)

Family: Service detection

Nessus Plugin ID: 10203 ()

Bugtraq ID:

CVE ID: CVE-1999-0618