[prev in list] [next in list] [prev in thread] [next in thread] 

List:       openvas-plugins
Subject:    Re: [Openvas-plugins] (no subject)
From:       Antu Sanadi <santu () secpod ! com>
Date:       2016-03-16 7:55:37
Message-ID: 56E90EA9.1050500 () secpod ! com
[Download RAW message or body]

Hello,

On Tuesday 15 March 2016 07:46 PM, Korodev wrote:
> Hi,
>
> It appears NVT 1.3.6.1.4.1.25623.1.0.801991 bails out early with the
> following condition:
>
> if(get_kb_item("SMB/samba") || "samba" >< tolower(lanman)){
>      exit(0);
> }
>
> Is this intentional? The intent of this plugin is to catch null SMB
> shares which certainly applies to other CIFS like Samba. I've verified
> that bypassing the above check will catch guest/null shares on Samba
> as well.

Presently NVT is taking care of only windows platform. You are right, It 
can be
enhanced for linux platform also. I will take care of this.

Thanks for reporting!

Regards,
Antu Sanadi
>
> https://access.redhat.com/solutions/731023
>
> Thanks,
>
> \\korodev
> _______________________________________________
> Openvas-plugins mailing list
> Openvas-plugins@wald.intevation.org
> https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-plugins


-- 
Saner Personal
A free vulnerability mitigation
software. Build strong defense.
http://www.secpod.com/saner-personal.html

_______________________________________________
Openvas-plugins mailing list
Openvas-plugins@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-plugins
[prev in list] [next in list] [prev in thread] [next in thread]