Microsoft Windows Remote Listeners Enumeration (WMI)

info Nessus Plugin ID 34252
New! Plugin Severity Now Using CVSS v3

The calculated severity for Plugins has been updated to use CVSS v3 by default. Plugins that do not have a CVSS v3 score will fall back to CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.


It is possible to obtain the names of processes listening on the remote UDP and TCP ports.


This script uses WMI to list the processes running on the remote host and listening on TCP / UDP ports.

Plugin Details

Severity: Info

ID: 34252

File Name: wmi_process_on_port.nbin

Version: 1.184

Type: local

Agent: windows

Family: Windows

Published: 9/23/2008

Updated: 1/18/2022

Dependencies: wmi_available.nbin, wmi_netstat.nbin, portscanners_stub.nasl, portscanners_settings.nasl

Vulnerability Information

CPE: cpe:/o:microsoft:windows

Required KB Items: SMB/WMI/Available, Host/Windows/%SystemRoot%\System32\netstat.exe_ano