Java Debug Wire Protocol Detection

This script is Copyright (C) 2012-2015 Tenable Network Security, Inc.

Synopsis :

A debugger service is running on the remote host.

Description :

A Java Debug Wire Protocol (JDWP) server was detected on the remote
host. This is a network protocol that allows debugging of a remote
Java virtual machine. Authentication is not required to access this
service. A remote, unauthenticated attacker could connect to this
service and execute arbitrary Java code.

Depending on the application being debugged, it is possible that this
service will stop running after it has been detected by Nessus. As such,
this plugin only runs if 'Safe checks' have been disabled.

See also :

Solution :

Filter incoming traffic to this port or disable this service.

Risk factor :

High / CVSS Base Score : 7.5

Family: Service detection

Nessus Plugin ID: 58400 ()

Bugtraq ID:


Ready to Scan Unlimited IPs & Run Compliance Checks?

Upgrade to Nessus Professional today!

Buy Now

Combine the Power of Nessus with the Ease of Cloud

Start your free Nessus Cloud trial now!

Begin Free Trial