This script is Copyright (C) 2005-2016 Tenable Network Security, Inc.
The remote Cheops-ng agent is affected by an information disclosure
A Cheops-ng agent is running on the remote host, and it is configured
to allow unencrypted connections. It is, therefore, affected by an
information disclosure vulnerability due to passwords being
transmitted in cleartext. A user with a valid account on the remote
host can connect to the agent and use it to map your network, port
scan machines, and identify running services. In addition, it is
possible to brute-force login/passwords on the remote host using this
See also :
Configure Cheops-ng to run on top of SSL or block this port from
outside communication if you want to further restrict the use of
Risk factor :
Medium / CVSS Base Score : 4.3
Nessus Plugin ID: 20162 (cheopsNG_clear_text_password.nasl)
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.