How to Buy
This script is Copyright (C) 2003-2016 Tenable Network Security, Inc.
The remote service is prone to an information disclosure flaw.
Using NetInfo, it is possible to obtain the password file of the remote host
by querying it directly.
An attacker may use it to set up a brute-force attack to crack the
passwords contained in the file, and then use the gained passwords to
login into the remote host, either remotely or locally.
See also :
Restrict access to NetInfo.
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.8
Public Exploit Available : true
Nessus Plugin ID: 11898 ()
Bugtraq ID: 2953
CVE ID: CVE-2001-1412
Get Nessus Professional to scan unlimited IPs, run compliance checks & more
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.