Hello All,
I have a number of end-user workstations on my network with the
vulnerability reported by plugin id 10396, 'smb shares access'.
I can't tell from the nessus description
"This script checks if we can access various NetBios shares"
or from the BugtraqID http://www.securityfocus.com/bid/8026
or from the CVE IDs http://cgi.nessus.org/cve.php3?cve=CAN-1999-0519
and http://cgi.nessus.org/cve.php3?cve=CAN-1999-0520
whether I should consider this a significant vulnerability.
What do you think?
My assumption is the following:
- readable shares are only a vulnerability if they contain files which
themselves contain secretive info (such as password hashes);
- writable shares are only a vulnerabilitiy :
a) because they allow the possibility of denying service to the
remote box (by filling a disk partition)
or
b) because they may contain files that the o.s. depends on, and
an attacker may thereby be able to trick/confuse the o.s. by
replacing such a file with one designed to give the attacker
greater privileges.
or
c) because attackers may be able to spread virii by installing
them on writable shares, and hoping that the end-user opens
them.
Do you think those are valid reasons to consider the 10396 vulnerability
worthy of notice?
thanks
--
Happy Landings,
Jon Detert
IT Systems Administrator, Milwaukee School of Engineering
1025 N. Broadway, Milwaukee, Wisconsin 53202
_______________________________________________
Nessus mailing list
[EMAIL PROTECTED]
http://mail.nessus.org/mailman/listinfo/nessus
