Windows Terminal Services Enabled

This script is Copyright (C) 2002-2017 Tenable Network Security, Inc.

Synopsis :

The remote Windows host has Terminal Services enabled.

Description :

Terminal Services allows a Windows user to remotely obtain a graphical
login (and therefore act as a local user on the remote host).

If an attacker gains a valid login and password, this service could be
used to gain further access on the remote host. An attacker may also
use this service to mount a dictionary attack against the remote host
to try to log in remotely.

Note that RDP (the Remote Desktop Protocol) is vulnerable to
Man-in-the-middle attacks, making it easy for attackers to steal the
credentials of legitimate users by impersonating the Windows server.

Solution :

Disable Terminal Services if you do not use it, and do not allow this
service to run across the Internet.

Risk factor :


Family: Windows

Nessus Plugin ID: 10940 ()

Bugtraq ID:


Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now