The remote host is an NIS (Network Information Service) server. NIS is used to share usernames, passwords, and other sensitive information among the hosts claiming to be within a given NIS domain and passes this information over the network unencrypted.
{"id": "NIS_SERVER.NASL", "type": "nessus", "bulletinFamily": "scanner", "title": "NIS Server Detection", "description": "The remote host is an NIS (Network Information Service) server. NIS is used to share usernames, passwords, and other sensitive information among the hosts claiming to be within a given NIS domain and passes this information over the network unencrypted.", "published": "1999-08-30T00:00:00", "modified": "2014-02-19T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/10158", "reporter": "This script is Copyright (C) 1999-2014 Tenable Network Security, Inc.", "references": [], "cvelist": [], "immutableFields": [], "lastseen": "2021-08-19T13:20:58", "viewCount": 6, "enchantments": {"dependencies": {}, "score": {"value": 0.0, "vector": "NONE"}, "backreferences": {"references": [{"type": "nessus", "idList": ["RPC_PORTMAP.NASL"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310107443"]}]}, "exploitation": null, "vulnersScore": 0.0}, "pluginID": "10158", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(10158);\n script_version(\"$Revision: 1.23 $\");\n script_cvs_date(\"$Date: 2014/02/19 01:34:32 $\");\n\n script_name(english:\"NIS Server Detection\");\n script_summary(english:\"Checks the presence of a RPC service\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"An NIS server is running on the remote host.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote host is an NIS (Network Information Service) server. NIS\nis used to share usernames, passwords, and other sensitive information\namong the hosts claiming to be within a given NIS domain and passes\nthis information over the network unencrypted.\");\n script_set_attribute(attribute:\"solution\", value:\n\"Filter traffic connecting to the portmapper and to the NIS server\nitself.\");\n script_set_attribute(attribute:\"risk_factor\", value:\"None\");\n\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"1999/08/30\");\n\nscript_set_attribute(attribute:\"plugin_type\", value:\"remote\");\nscript_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 1999-2014 Tenable Network Security, Inc.\");\n script_family(english:\"RPC\");\n script_dependencie(\"rpc_portmap.nasl\");\n script_require_keys(\"rpc/portmap\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"misc_func.inc\");\ninclude(\"sunrpc_func.inc\");\n\n\nRPC_PROG = 100004;\ntcp = 0;\nport = get_rpc_port2(program:RPC_PROG, protocol:IPPROTO_UDP);\nif(!port){\n\tport = get_rpc_port2(program:RPC_PROG, protocol:IPPROTO_TCP);\n\ttcp = 1;\n\t}\n\nif(port)\n{\n if(tcp)security_note(port);\n else security_note(port:port, protocol:\"udp\");\n}\n", "naslFamily": "RPC", "cpe": [], "solution": "Filter traffic connecting to the portmapper and to the NIS server itself.", "nessusSeverity": "Info", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": [], "_state": {"dependencies": 1647589307, "score": 0}}
NIS Server Detection