Holes/warnings all show Sambar text
Steve Bonds
sxm4qcu02 at sneakemail.com
Wed Aug 18 18:14:46 EDT 2004
On Wed, 18 Aug 2004, Steve Bonds sxm4qcu02-at-sneakemail.com |nessus| wrote:
> I just started using nessus 2.0.12 and immediately ran into some strange
> behavior. When scanning a Red Hat Enterprise 3 system, a number of
> different warnings and holes all show the same text:
>
> -----
> The 'search.dll' CGI which comes with Sambar server can be
> used to obtain a listing of the remote web server directories
> even if they have a default page such as index.html.
>
> This allows an attacker to gain valuable information about the
> directory structure of the remote host and could reveal the
> presence of files which are not intended to be visible.
> -----
For the benefit of future searchers:
I traced the problem to the client-side .nessusrc file. I suspect that
this file had some junk left in it from an earlier version of Nessus (1.X)
that was confusing the new Nessus client.
Nuking this file with the .nessusrc.cert and letting the client re-create
them from defaults seems to have worked.
If the problem recurs I'll be sure to investigate and post more details.
;-)
-- Steve
More information about the Nessus
mailing list