Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2001-2018 Tenable Network Security, Inc.CISCO_NO_PW.NASL
HistorySep 07, 2001 - 12:00 a.m.

Cisco Multiple Devices Unpassworded Account

2001-09-0700:00:00
This script is Copyright (C) 2001-2018 Tenable Network Security, Inc.
www.tenable.com
88

0.0004 Low

EPSS

Percentile

5.1%

JSON

The remote host appears to be a Cisco router or switch with no password set. This can allow a remote attacker to login to the device and take control of it.

#
# (C) Tenable Network Security, Inc.
#


include("compat.inc");


if(description)
{
 script_id(10754);
 script_cve_id("CVE-1999-0508");
 script_version ("1.23");
 
 script_name(english:"Cisco Multiple Devices Unpassworded Account");
 script_summary(english:"Checks for the absence of a password");

 script_set_attribute( attribute:"synopsis", value:
"It is possible to login to the remote network device without a
password." );
 script_set_attribute( attribute:"description",  value:
"The remote host appears to be a Cisco router or switch with no
password set.  This can allow a remote attacker to login to the device
and take control of it." );
 script_set_attribute( attribute:"solution",  value:
"Login and set exec and enable passwords.  For more information, refer
refer to the manual for the device." );
 script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
 script_set_cvss_temporal_vector("CVSS2#E:U/RL:TF/RC:C");
 script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
 script_set_attribute(attribute:"exploit_available", value:"false");
 script_set_attribute(attribute:"plugin_publication_date", value: "2001/09/07");
 script_set_attribute(attribute:"vuln_publication_date", value: "1999/01/01");
 script_cvs_date("Date: 2018/07/25 16:19:22");
 script_set_attribute(attribute:"plugin_type", value:"remote");
 script_end_attributes();
 
 script_category(ACT_GATHER_INFO);
 script_family(english:"CISCO");
 
 script_copyright(english:"This script is Copyright (C) 2001-2018 Tenable Network Security, Inc.");

 script_dependencie("find_service1.nasl");
 script_require_ports("Services/telnet", 23);
 exit(0);
}


include('telnet_func.inc');

function test_cisco(password, port)
{
 local_var soc, r;

 soc = open_sock_tcp(port);

 if(soc)
 {
  r = telnet_negotiate(socket:soc);
  r = recv(socket:soc, length:4096);
  send(socket:soc, data:string(password, "\r\n"));
  r = recv(socket:soc, length:4096);
  send(socket:soc, data:string("show ver\r\n"));
  r = recv(socket:soc, length:4096);
  if("Cisco Internetwork Operating System Software" >< r)
  {
   security_hole(port);
   set_kb_item(name: 'CISCO/no_passwd/'+port, value: TRUE);
  }
  close(soc);
 }
}


port = get_kb_item("Services/telnet");
if(!port)port = 23;
if(!get_port_state(port))exit(0);

banner = get_telnet_banner(port:port);
if ( ! banner || "User Access Verification" >!< banner ) exit(0);


test_cisco(password:"", port:port);

Related

openvas 36
nessus 24
cve 1
cvelist 1
openvas
openvas
Unprotected PC Anywhere Service
2005-11-03 00:00:00
AOLserver Default Password
2005-11-03 00:00:00
WhatsUp Gold Default Admin Account
2005-11-03 00:00:00
nessus
nessus
Allied Telesyn Router/Switch Web Interface Default Password
2005-06-03 00:00:00
MikroTik RouterOS with Blank Password (HTTP)
2009-06-17 00:00:00
OpenWrt Router with a Blank Password (telnet check)
2009-07-23 00:00:00
cve
cve
CVE-1999-0508
2000-02-04 05:00:00
cvelist
cvelist
CVE-1999-0508
2000-02-04 05:00:00

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for CISCO_NO_PW.NASL
openvas36nessus24cve1cvelist1