Finger Attack - Successful Finger Query to Multiple Users

High Nessus Network Monitor Plugin ID 6211

Synopsis

A response from a known finger daemon was observed.

Description

A response from a known finger daemon was observed which indicated that the attacker was able to retrieve a list of three or more valid user names.

Solution

Disable the finger service, or restrict access to this service.

Plugin Details

Severity: High

ID: 6211

Family: Generic

Published: 2012/01/06

Modified: 2015/06/01

Dependencies: 1277

Risk Information

Risk Factor: High