MS Executable Detection

Critical Nessus Plugin ID 33950

Synopsis

The remote host may be compromised.

Description

This service is unknown to Nessus. It appears to send a Microsoft
Windows executable when a connection to it is established. This may
be evidence of some malware that are known to propagate in this
manner.

Solution

Check the host and disinfect / reinstall it if necessary.

Plugin Details

Severity: Critical

ID: 33950

File Name: ms_exe_detect.nasl

Version: Revision: 1.10

Type: remote

Published: 2008/08/20

Modified: 2015/09/24

Dependencies: 17975, 11153

Risk Information

Risk Factor: Critical

CVSS v2.0

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C