Java Remote Management Platform Plaintext Password Detection

Medium Nessus Network Monitor Plugin ID 4586

Synopsis

The remote host passes information across the network in an insecure manner.

Description

The remote server is managed by a Java JConsole. Further, the server is configured to accept plaintext credentials. This can be dangerous if an attacker can gain access to network traffic.

Solution

Require remote clients to use an encrypted session.

Plugin Details

Severity: Medium

ID: 4586

Family: Generic

Published: 2004/08/18

Modified: 2018/05/18

Dependencies: 4583

Risk Information

Risk Factor: Medium