📄 bugbear_b.nasl

📁 漏洞扫描源码,可以扫描linux,windows,交换机路由器

💻 NASL

字号:

## (C) 2003 StrongHoldNet## Licence : GPL v2## Modifications by rd:#  -> Try every web server, not just port 81### Ref: http://www.f-secure.com/v-descs/bugbear_b.shtml## UNTESTEDif (description){ script_id(11707); script_version ("$Revision: 38 $"); script_name(english:"Bugbear.B web backdoor"); desc["english"] = "Your system seems to be infected by the Bugbear.B virus(its backdoor has been detected on port 81).More information: http://www.f-secure.com/v-descs/bugbear_b.shtmlSolution: Use your favorite antivirus to disinfect yoursystem. Standalone disinfection tools also exist :ftp://ftp.f-secure.com/anti-virus/tools/f-bugbr.zipRisk factor : High"; script_description(english:desc["english"]); script_summary(english:"Checks for Bugbear.B web backdoor"); script_category(ACT_GATHER_INFO); script_family(english:"Backdoors", francais:"Backdoors"); script_copyright(english:"This script is Copyright (C) 2003 StrongHoldNet"); script_dependencie("http_version.nasl"); script_require_ports("Services/www", 81); exit(0);}include("http_func.inc");include("http_keepalive.inc");port = get_http_port(default:81);if(!port)exit(0);if(!get_port_state(port))exit(0);url = string(d, '/%NETHOOD%/');req = http_get(item:url, port:port);buf = http_keepalive_send_recv(port:port, data:req);if( buf == NULL ) exit(0);if(ereg(pattern:"^HTTP/[0-9]\.[0-9] 200 ", string:buf) && "Microsoft Windows Network" >< buf) security_hole(port);

⌨️ 快捷键说明

复制代码 Ctrl + C

搜索代码 Ctrl + F

全屏模式 F11

切换主题 Ctrl + Shift + D

显示快捷键 ?

增大字号 Ctrl + =

减小字号 Ctrl + -