Microsoft Windows Alerter Service Social Engineering Weakness

This script is Copyright (C) 2000-2016 Tenable Network Security, Inc.


Synopsis :

The remote service allows users to send pop-up messages to each other.

Description :

The alerter service is running. This service allows
NT users to send pop-up messages to each other.

This service can be abused by an attacker who can
trick valid users into doing some actions that may
harm their accounts or your network (social
engineering attack)

Solution :

Disable this service.

How to disable this service under NT 4 :
- open the 'Services' control panel
- select the 'Alerter' service, and click 'Stop'
- click on 'Startup...' and change to radio button of the
field 'Startup Type' from 'Automatic' to 'Disabled'

Under Windows 2000 :
- open the 'Administration tools' control panel
- open the 'Services' item in it
- double click on the 'Alerter' service
- click on 'stop'
- change the drop-down menu value from the field 'Startup Type'
from 'Automatic' to 'Disabled'

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)

Family: Windows

Nessus Plugin ID: 10457 ()

Bugtraq ID:

CVE ID: CVE-1999-0630

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now