Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2002-2021 David KygerODBC_TOOLS_CHECK.NASL
HistoryOct 08, 2003 - 12:00 a.m.

Microsoft IIS ODBC Tool getdrvrs.exe DSN Creation

2003-10-0800:00:00
This script is Copyright (C) 2002-2021 David Kyger
www.tenable.com
126
JSON

ODBC tools are present on the remote host.

ODBC tools could allow a malicious user to hijack and redirect ODBC traffic, obtain SQL user names and passwords or write files to the local drive of a vulnerable server.

Example: http://www.example.com/scripts/tools/getdrvrs.exe

#%NASL_MIN_LEVEL 70300
#
# This script was written by David Kyger <[email protected]>
#
# See the Nessus Scripts License for details
#

# Changes by Tenable:
# - Revised plugin title (3/27/2009)

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(11872);
  script_version("1.19");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");


  script_name(english:"Microsoft IIS ODBC Tool getdrvrs.exe DSN Creation");
  script_summary(english:"Checks for the presence of ODBC tools");

  script_set_attribute(attribute:"synopsis", value:"Sensitive data can be read or written on the remote host.");
  script_set_attribute(attribute:"description", value:
"ODBC tools are present on the remote host.

ODBC tools could allow a malicious user to hijack and redirect ODBC
traffic, obtain SQL user names and passwords or write files to the
local drive of a vulnerable server.

Example: http://www.example.com/scripts/tools/getdrvrs.exe");
  script_set_attribute(attribute:"solution", value:"Remove ODBC tools from the /scripts/tools directory.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");

  script_set_attribute(attribute:"vuln_publication_date", value:"1999/01/01");
  script_set_attribute(attribute:"plugin_publication_date", value:"2003/10/08");

  script_set_attribute(attribute:"potential_vulnerability", value:"true");
  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2002-2021 David Kyger");
  script_family(english:"CGI abuses");

  script_dependencie("find_service1.nasl", "http_version.nasl");
  script_require_keys("Settings/ParanoidReport");
  script_require_ports("Services/www", 80);

  exit(0);
}

include("audit.inc");
include("global_settings.inc");
include("http_func.inc");
include("http_keepalive.inc");

if (report_paranoia < 2) audit(AUDIT_PARANOID);



flag = 0;

warning = "The following ODBC tools were found on the server:";




port = get_http_port(default:80, embedded:TRUE);

if(get_port_state(port)) {

   fl[0] = "/scripts/tools/getdrvrs.exe";
   fl[1] = "/scripts/tools/dsnform.exe";

   for(i=0;fl[i];i=i+1)
   {
    if(is_cgi_installed_ka(item:fl[i], port:port))
	{
        warning = warning + string("\n", fl[i]);
        flag = 1;
        }
   }
    if (flag > 0) {
        security_hole(port:port, extra:warning);
        } else {
          exit(0);
        }
}
JSON