Settings : Options for Brute Force NVTs

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

Test ID: 1.3.6.1.4.1.25623.1.0.103697

Category: Settings

Title: Options for Brute Force NVTs

Summary: This VT sets some options for the brute force / default; credentials checks.;; - Disable brute force checks:;; Disables the brute force checks done by the following VTs:;; HTTP Brute Force Logins With Default Credentials (OID: 1.3.6.1.4.1.25623.1.0.108041);; SSH Brute Force Logins With Default Credentials (OID: 1.3.6.1.4.1.25623.1.0.108013);; SMB Brute Force Logins With Default Credentials (OID: 1.3.6.1.4.1.25623.1.0.804449);; Check default community names of the SNMP Agent (OID: 1.3.6.1.4.1.25623.1.0.103914).;; - Disable default account checks:;; Disables all VTs checking for default accounts (Mainly from the 'Default Accounts' family).;; - Credentials file:;; A file containing a list of credentials. One username/password pair per line. Username and; password are separated by ':'. Please use '<>' for empty passwords or empty usernames. If; the username or the password contains a ':', please escape it with '\:'.;; Examples:;; user:userpass;; user1:userpass1;; <>:userpass2;; user3:<>;; user4:pass\:word;; user5:userpass5;; - Use only credentials listed in uploaded file:;; Use only the credentials that are listed in the uploaded file. The internal default credentials; are ignored.

Description: Summary:
This VT sets some options for the brute force / default
credentials checks.

- Disable brute force checks:

Disables the brute force checks done by the following VTs:

HTTP Brute Force Logins With Default Credentials (OID: 1.3.6.1.4.1.25623.1.0.108041)

SSH Brute Force Logins With Default Credentials (OID: 1.3.6.1.4.1.25623.1.0.108013)

SMB Brute Force Logins With Default Credentials (OID: 1.3.6.1.4.1.25623.1.0.804449)

Check default community names of the SNMP Agent (OID: 1.3.6.1.4.1.25623.1.0.103914).

- Disable default account checks:

Disables all VTs checking for default accounts (Mainly from the 'Default Accounts' family).

- Credentials file:

A file containing a list of credentials. One username/password pair per line. Username and
password are separated by ':'. Please use '<>' for empty passwords or empty usernames. If
the username or the password contains a ':', please escape it with '\:'.

Examples:

user:userpass

user1:userpass1

<>:userpass2

user3:<>

user4:pass\:word

user5:userpass5

- Use only credentials listed in uploaded file:

Use only the credentials that are listed in the uploaded file. The internal default credentials
are ignored.

CVSS Score:
0.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:N

Copyright Copyright (C) 2013 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	1.3.6.1.4.1.25623.1.0.103697
Category:	Settings
Title:	Options for Brute Force NVTs
Summary:	This VT sets some options for the brute force / default; credentials checks.;; - Disable brute force checks:;; Disables the brute force checks done by the following VTs:;; HTTP Brute Force Logins With Default Credentials (OID: 1.3.6.1.4.1.25623.1.0.108041);; SSH Brute Force Logins With Default Credentials (OID: 1.3.6.1.4.1.25623.1.0.108013);; SMB Brute Force Logins With Default Credentials (OID: 1.3.6.1.4.1.25623.1.0.804449);; Check default community names of the SNMP Agent (OID: 1.3.6.1.4.1.25623.1.0.103914).;; - Disable default account checks:;; Disables all VTs checking for default accounts (Mainly from the 'Default Accounts' family).;; - Credentials file:;; A file containing a list of credentials. One username/password pair per line. Username and; password are separated by ':'. Please use '<>' for empty passwords or empty usernames. If; the username or the password contains a ':', please escape it with '\:'.;; Examples:;; user:userpass;; user1:userpass1;; <>:userpass2;; user3:<>;; user4:pass\:word;; user5:userpass5;; - Use only credentials listed in uploaded file:;; Use only the credentials that are listed in the uploaded file. The internal default credentials; are ignored.
Description:	Summary: This VT sets some options for the brute force / default credentials checks. - Disable brute force checks: Disables the brute force checks done by the following VTs: HTTP Brute Force Logins With Default Credentials (OID: 1.3.6.1.4.1.25623.1.0.108041) SSH Brute Force Logins With Default Credentials (OID: 1.3.6.1.4.1.25623.1.0.108013) SMB Brute Force Logins With Default Credentials (OID: 1.3.6.1.4.1.25623.1.0.804449) Check default community names of the SNMP Agent (OID: 1.3.6.1.4.1.25623.1.0.103914). - Disable default account checks: Disables all VTs checking for default accounts (Mainly from the 'Default Accounts' family). - Credentials file: A file containing a list of credentials. One username/password pair per line. Username and password are separated by ':'. Please use '<>' for empty passwords or empty usernames. If the username or the password contains a ':', please escape it with '\:'. Examples: user:userpass user1:userpass1 <>:userpass2 user3:<> user4:pass\:word user5:userpass5 - Use only credentials listed in uploaded file: Use only the credentials that are listed in the uploaded file. The internal default credentials are ignored. CVSS Score: 0.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:N
Copyright	Copyright (C) 2013 Greenbone AG