Unencrypted Telnet Server

This script is Copyright (C) 2009-2014 Tenable Network Security, Inc.


Synopsis :

The remote Telnet server transmits traffic in cleartext.

Description :

The remote host is running a Telnet server over an unencrypted
channel.

Using Telnet over an unencrypted channel is not recommended as logins,
passwords and commands are transferred in cleartext. An attacker may
eavesdrop on a Telnet session and obtain credentials or other
sensitive information.

Use of SSH is prefered nowadays as it protects credentials from
eavesdropping and can tunnel additional data streams such as the X11
session.

Solution :

Disable this service and use SSH instead.

Risk factor :

Low / CVSS Base Score : 2.6
(CVSS2#AV:N/AC:H/Au:N/C:P/I:N/A:N)

Family: Misc.

Nessus Plugin ID: 42263 ()

Bugtraq ID:

CVE ID: