📄 nortel_pwdless2.nasl

📁 漏洞扫描源码,可以扫描linux,windows,交换机路由器

💻 NASL

字号:

## This script was written by Victor Kirhenshtein <sauros@iname.com># Based on cisco_675.nasl by Renaud Deraison <deraison@cvs.nessus.org>## See the Nessus Scripts License for details#if(description){   script_id(10529); script_version ("$Revision: 38 $");   name["english"] = "Nortel Networks  passwordless router (user level)";   script_name(english:name["english"]);    desc["english"] = "The remote Nortel Networks (former Bay Networks) router hasno password for user account. An attacker could telnet to the router and reconfigure it to lock you out of it, and to prevent you to use your internet connection.Solution : telnet to this router and set a passwordimmediately.Risk factor : Medium";   script_description(english:desc["english"]);    summary["english"] = "Logs into the remote Nortel Networks (Bay Networks) router";   script_summary(english:summary["english"]);    script_category(ACT_GATHER_INFO);    script_copyright(english:"This script is Copyright (C) 2000 Victor Kirhenshtein");   script_family(english:"Misc.", francais:"Divers");   script_require_ports(23);    exit(0);}## The script code starts here#include('telnet_func.inc');port = 23;if(get_port_state(port)){   buf = get_telnet_banner(port:port);   if ( ! buf  || "Bay Networks" >!< buf ) exit(0);   soc = open_sock_tcp(port);   if(soc)   {      buf = telnet_negotiate(socket:soc);      if("Bay Networks" >< buf)      {         if ("Login:" >< buf)         {            data = string("User\r\n");            send(socket:soc, data:data);            buf2 = recv(socket:soc, length:1024);            if("$" >< buf2) security_warning(port);         }      }      close(soc);   }}

⌨️ 快捷键说明

复制代码 Ctrl + C

搜索代码 Ctrl + F

全屏模式 F11

切换主题 Ctrl + Shift + D

显示快捷键 ?

增大字号 Ctrl + =

减小字号 Ctrl + -