This script is Copyright (C) 2003-2013 Tenable Network Security, Inc.
The remote service is prone to an information disclosure flaw.
Using NetInfo, it is possible to obtain the password file of the remote host
by querying it directly.
An attacker may use it to set up a brute-force attack to crack the
passwords contained in the file, and then use the gained passwords to
login into the remote host, either remotely or locally.
See also :
Restrict access to NetInfo.
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.8
Public Exploit Available : true