Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Nessus-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Plugin ID 17997

from [Nelson, C.M.] Network Security [Permanent Link]
Subject: Plugin ID 17997
Date: Wed, 6 Dec 2006 12:07:59 -0000 
Is this a case of a false positive or a possible vulnerability?


Plugin ID 17997 may connect to port 2301 and say:

"The remote host is running a Compaq Web Management server. The remote
version of this software is vulnerable to an unspecified buffer overflow
vulnerability which may allow an attacker to execute arbitrary code on
the remote host with the privileges of the web server process."


However connecting to Compaq Web Management server on port 2301 with a
browser may say:

"Unable to complete your request due to added security features
This version of HP's management software has added new security features
which include only allowing access to the web-enabled interface using
the secure HTTPS protocol. This protocol is accessed at a new port,
2381, instead of the port, 2301, used for HTTP access.

One of the aspects of HTTPS is the requirement for a server certificate.
Unless the individual installing the management software has imported a
certificate signed by a particular certificate authority the management
software will be using a self-signed certificate. When a browser first
makes an HTTPS connection to the HP management software on port 2381 it
will attempt to verify the certificate. If the certificate it is
presented with by the management software has not been signed by one of
the certificate authorities installed in the browser then the user will
be presented with a dialog and given the option of whether to accept the
certificate or not. The certificate needs to be accepted to connect to
the management software.

The user has the option of installing the self-signed certificate into
the browser to avoid this challenge in the future. However if the
self-signed certificate is regenerated then the same process will have
to be followed again.

This link is to the equivalent secure link."

--
Carl Nelson
Distributed Systems Support Section, Computer Centre, University of
Leicester, Leicester, LE1 7RH, U.K.
Tel: +44 (0)116 252 2060, Fax: +44 (0)116 252 5027
_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Report shows Severity as HIGH and Risk Factor as MEDIUM, tech tech
Next by Date:  Re: Report shows Severity as HIGH and Risk Factor as MEDIUM, George A. Theall
Previous by Thread:  Report shows Severity as HIGH and Risk Factor as MEDIUM, tech tech
Next by Thread:  Plugin ID 11041 and 11042, ablesambaker
Indexes:  [Date] [Thread] [Top] [All Lists]