Java Debug Wire Protocol Detection

This script is Copyright (C) 2012 Tenable Network Security, Inc.


Synopsis :

A debugger service is running on the remote host.

Description :

A Java Debug Wire Protocol (JDWP) server was detected on the remote
host. This is a network protocol that allows debugging of a remote
Java virtual machine. Authentication is not required to access this
service. A remote, unauthenticated attacker could connect to this
service and execute arbitrary Java code.

Depending on the application being debugged, it is possible that this
service will stop running after it has been detected by Nessus. As such,
this plugin only runs if 'Safe checks' have been disabled.

See also :

http://docs.oracle.com/javase/1.4.2/docs/guide/jpda/
http://docs.oracle.com/javase/1.4.2/docs/guide/jpda/jdwp-spec.html

Solution :

Filter incoming traffic to this port or disable this service.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)

Family: Service detection

Nessus Plugin ID: 58400 ()

Bugtraq ID:

CVE ID: