 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.11830 |
| Category: | Windows |
| Title: | NetBIOS Name Service Reply Information Leakage |
| Summary: | NOSUMMARY |
| Description: | Description: The remote host is running a version of the NetBT name service which suffers from a memory disclosure problem. An attacker may send a special packet to the remote NetBT name service, and the reply will contain random arbitrary data from the remote host memory. This arbitrary data may be a fragment from the web page the remote user is viewing, or something more serious like a POP password or anything else. An attacker may use this flaw to continuously 'poll' the content of the memory of the remote host and might be able to obtain sensitive information. Solution : See http://www.microsoft.com/technet/security/bulletin/ms03-034.mspx Risk factor : Medium |
| Cross-Ref: |
BugTraq ID: 8532 Common Vulnerability Exposure (CVE) ID: CVE-2003-0661 CERT/CC vulnerability note: VU#989932 http://www.kb.cert.org/vuls/id/989932 Microsoft Security Bulletin: MS03-034 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-034 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3483 |
| Copyright | This script is Copyright (C) 2003 Tenable Network Security |
| This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |