Detections
Analytics
SMB Password Encryption Not Required
medium Nessus Plugin ID 87734
Language:
Synopsis
Password encryption is not required on the remote SMB server.Description
The remote SMB server does not require password encryption. This allows clients to send cleartext passwords over the network.Solution
Require password encryption on the SMB server.Plugin Details
Severity: Medium
ID: 87734
File Name: smb_password_encryption_disabled.nasl
Version: Revision: 1.1
Type: remote
Agent: windows
Family: Windows
Published: 1/5/2016
Updated: 1/5/2016
Supported Sensors: Nessus
Risk Information
CVSS v2
Risk Factor: Medium
Base Score: 4.3
Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N
Vulnerability Information
CPE: cpe:/o:microsoft:windows