Dell KACE K2000 Appliance Hidden CIFS Fileshare Information Disclosure

Medium Nessus Plugin ID 53493


The remote deployment appliance has an information disclosure vulnerability.


The remote Dell KACE K2000 appliance has an information disclosure vulnerability. A hidden, read-only share named 'peinst' is used to facilitate Windows deployments. This share is populated with pre- and post-installation tasks, as well as deployment bootfiles and media used for Windows network installs. This share allows anonymous access.

A remote, unauthenticated attacker could connect to this share, allowing them to access sensitive data used during deployments (e.g.
local and/or domain administrator credentials).


Upgrade to K2000 3.4 or later.

See Also

Plugin Details

Severity: Medium

ID: 53493

File Name: dell_kace_hidden_share.nasl

Version: $Revision: 1.7 $

Type: remote

Family: Misc.

Published: 2011/04/19

Modified: 2016/05/05

Dependencies: 13855

Risk Information

Risk Factor: Medium


Base Score: 5

Temporal Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Temporal Vector: CVSS2#E:ND/RL:U/RC:C

Vulnerability Information

CPE: cpe:/h:dell:kace_k2000_systems_deployment_appliance

Required KB Items: SMB/samba, SMB/guest_enabled

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 2011/04/05

Reference Information

CVE: CVE-2011-1672

BID: 47172

CERT: 598700

OSVDB: 71882