📄 kerio_firewall_admin_port.nasl
字号:
## Copyright (C) 2005 Secure Computer Group. University of A Coruna## This script was written by Javier Munoz Mellid <jm@udc.es>## This script is released under the GNU GPL v2#if(description){ script_id(18183); script_bugtraq_id(13458); script_cve_id("CVE-2005-1062", "CVE-2005-1063"); script_version("$Revision: 38 $"); name["english"] = "Kerio Personal Firewall Admin Service"; script_name(english:name["english"]); desc["english"] = "Synopsis :The administrative interface of a personal firewall service isrunning on the remote port.Description :The remote host appears to be running the Kerio Personal Firewall Admin service on this port. It is recommended that this port is notreachable from the outside.Also, make sure that the use of this software is done in accordance withyour corporate security policy.Solution :If this service is not needed, disable it or filter incoming trafficto this port.Risk factor : None"; script_description(english:desc["english"]); summary["english"] = "Determines if Kerio Personal Firewall is installed"; script_summary(english:summary["english"]); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2005 Javier Munoz Mellid"); family["english"] = "Service detection"; script_family(english:family["english"]); script_require_ports(44334); exit(0);}function kpf_isWeakAdminProtocol(port){ soc = open_sock_tcp(port, transport: ENCAPS_TLSv1); if (!soc) return 0; vuln = 1; for(i=0;i<5;i=i+1) { s = raw_string(0x01); send(socket:soc, data: s); if (!soc) vuln = 0; r = recv(socket: soc, length: 16); if (isnull(r)||(strlen(r)!=2)||(ord(r[0])!=0x01)||(ord(r[1])!=0x00)) { vuln = 0; break; } } close(soc); if (vuln) return 1; else return 0;}port = 44334; # default kpf portif (! get_port_state(port)) exit(0);if (kpf_isWeakAdminProtocol(port)) security_note(port);exit(0);⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -