MagniComp SysInfo Agent Accessible

medium Nessus Plugin ID 26967

Language:

Synopsis

The remote MagniComp SysInfo agent is not protected.

Description

The MagniComp SysInfo agent on the remote host allows the Nessus server to retrieve information about the system's assets and configuration, which could help an attacker plan more focused attacks against the affected host.

Solution

Edit the AUTH and/or ALLOW keyword settings in the mcsysinfod configuration file to limit access.

Plugin Details

Severity: Medium

ID: 26967

File Name: mcsysinfo_accessible.nasl

Version: Revision: 1.7

Type: remote

Family: Misc.

Published: 10/10/2007

Updated: 9/24/2015

Supported Sensors: Nessus

Risk Information

CVSS v2

Risk Factor: Medium

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Detections

Analytics