FakeBO NetBus Handling Code Remote Overflow

high Nessus Plugin ID 10066

Synopsis

The remote honeypot service has a stack-based buffer overflow vulnerability.

Description

The remote host appears to be running FakeBO, a service that mimics backdoors such as Back Orifice and NetBus, monitoring any login attempts.

The version of FakeBO running on the remote host has a remote stack- based buffer overflow vulnerability. A remote attacker could exploit this to crash the service, or execute arbitrary code.

Solution

Disable this service.

See Also

https://seclists.org/bugtraq/1999/Feb/183

Plugin Details

Severity: High

ID: 10066

File Name: fakebo.nasl

Version: 1.32

Type: remote

Published: 6/22/1999

Updated: 11/15/2018

Supported Sensors: Nessus

Risk Information

CVSS v2

Risk Factor: High

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

Vulnerability Publication Date: 2/11/1999