YARA File Scan (Linux)

Critical Nessus Plugin ID 97862

Synopsis

Nessus detected one or more malicious files on the remote host.

Description

Nessus detected one or more files on the remote Linux that match a YARA rule.

See Also

http://virustotal.github.io/yara/

Plugin Details

Severity: Critical

ID: 97862

File Name: linux_yara_file_scan.nbin

Version: 1.230

Type: local

Agent: unix

Family: Backdoors

Published: 2017/03/21

Updated: 2020/02/18

Dependencies: 124649

Risk Information

Risk Factor: Critical

CVSS Score Source: manual

CVSS Score Rationale: Malware score

CVSS v2.0

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS v3.0

Base Score: 10

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Vulnerability Information

Required KB Items: Host/yara/path, Host/yara/custom_dirs, Host/yara/rule