ClarkConnect Linux clarkconnectd Remote Information Disclosure

This script is Copyright (C) 2003-2011 Tenable Network Security, Inc.


Synopsis :

A service on the remote host is disclosing information.

Description :

The 'clarkconnectd' service appears to be listening on this port.
This service provides sensitive information to remote, unauthenticated
users, such as a list of running processes, the contents of
/var/log/messages, the contents of the snort log, and more.

A remote attacker could use this information to mount further attacks.

See also :

http://archives.neohapsis.com/archives/bugtraq/2003-02/att-0318/01-clarkconnect.txt

Solution :

Disable the clarkconnectd service.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N)
CVSS Temporal Score : 4.3
(CVSS2#E:H/RL:OF/RC:C)
Public Exploit Available : true

Family: Misc.

Nessus Plugin ID: 11277 (clarkconnectd.nasl)

Bugtraq ID: 6934

CVE ID: CVE-2003-1379