Wollf Backdoor Detection

critical Nessus Plugin ID 11881

Language:

Synopsis

The remote host has been compromised.

Description

This host appears to be running Wollf on this port. Wollf Can be used as a Backdoor which allows an intruder gain remote access to files on your computer. If you did not install this program for remote management then this host may be compromised.

An attacker may use it to steal your passwords, or redirect ports on your system to launch other attacks

Solution

See http://www.nessus.org/u?10e4148e for details on removal.

Plugin Details

Severity: Critical

ID: 11881

File Name: JM_Wollf.nasl

Version: Revision: 1.14

Type: remote

Family: Backdoors

Published: 10/13/2003

Updated: 1/25/2013

Supported Sensors: Nessus

Risk Information

CVSS v2

Risk Factor: Critical

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

Required KB Items: Services/wollf