Detections
Analytics

Successful Shell Attack Detected - Unix SSH Initial Connetion Detection

high Nessus Network Monitor Plugin ID 6160

Synopsis

A successful shell attack was detected.

Description

An SSH session was observed which may be an initial connection which may also be present in a command line shell of a successful buffer overflow.

Solution

The command activity observed is indicative of a possible compromise. Consider performing a full audit of the system to investigate further.

Plugin Details

Severity: High

ID: 6160

Family: Generic

Published: 1/6/2012

Updated: 7/11/2018

Vulnerability Information

CPE: cpe:/o:unix