Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:10073
Category:Finger abuses
Title:Finger redirection check
Summary:NOSUMMARY
Description:Description:

The remote finger service accepts to redirect requests. That is, users can
perform requests like :

finger user@host@victim

This allows an attacker to use this computer as a relay to gather information
on a third party network.

Solution: Disable the remote finger daemon (comment out the 'finger' line
in /etc/inetd.conf and restart the inetd process) or upgrade it to a more
secure one.

Risk factor : Low

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-1999-0105
Common Vulnerability Exposure (CVE) ID: CVE-1999-0106
CopyrightThis script is Copyright (C) 1999 Renaud Deraison

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2021 E-Soft Inc. All rights reserved.