Generic Shell Detection (Cisco Catalyst)
Low Nessus Network Monitor Plugin ID 1943
SynopsisThe remote host is running an inherently insecure protocol or application.
DescriptionA Cisco shell server was noted on the host. Typically, shells are used by remote users to manage operating systems. Shells that pass traffic in plaintext introduce a risk to confidentiality and privacy. In addition, many shells are used by malicious individuals as part of a Trojan program or remote buffer overflow exploit.
SolutionEnsure that the remote shell is secured against data leakage and that it is a valid, approved means of managing the remote machine.