Detection of dialup_admin interface for the freeradius radius server.
The script sends a connection request to the server and attempts to detect dialup_admin
web based administration interface for the freeradius radius server.
{"id": "OPENVAS:1361412562310108430", "type": "openvas", "bulletinFamily": "scanner", "title": "dialup_admin Detection", "description": "Detection of dialup_admin interface for the freeradius radius server.\n\n The script sends a connection request to the server and attempts to detect dialup_admin\n web based administration interface for the freeradius radius server.", "published": "2018-03-14T00:00:00", "modified": "2020-08-24T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310108430", "reporter": "Copyright (C) 2018 Greenbone Networks GmbH", "references": ["https://github.com/FreeRADIUS/dialup-admin"], "cvelist": [], "lastseen": "2020-10-04T15:17:28", "viewCount": 3, "enchantments": {"dependencies": {}, "score": {"value": 0.1, "vector": "NONE"}, "backreferences": {"references": [{"type": "nessus", "idList": ["WEBMIRROR.NASL"]}]}, "exploitation": null, "vulnersScore": 0.1}, "pluginID": "1361412562310108430", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# dialup_admin Detection\n#\n# Authors:\n# Michael Martin <michael.martin@greenbone.net>\n# Christian Fischer <christian.fischer@greenbone.net>\n#\n# Copyright:\n# Copyright (C) 2018 Greenbone Networks GmbH, https://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License as published by\n# the Free Software Foundation; either version 2 of the License, or\n# (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.108430\");\n script_version(\"2020-08-24T15:18:35+0000\");\n script_tag(name:\"last_modification\", value:\"2020-08-24 15:18:35 +0000 (Mon, 24 Aug 2020)\");\n script_tag(name:\"creation_date\", value:\"2018-03-14 09:41:54 +0100 (Wed, 14 Mar 2018)\");\n script_tag(name:\"cvss_base\", value:\"0.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:N\");\n script_name(\"dialup_admin Detection\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH\");\n script_family(\"Product detection\");\n script_dependencies(\"find_service.nasl\", \"no404.nasl\", \"webmirror.nasl\", \"DDI_Directory_Scanner.nasl\", \"global_settings.nasl\");\n script_require_ports(\"Services/www\", 80);\n script_exclude_keys(\"Settings/disable_cgi_scanning\");\n\n script_tag(name:\"summary\", value:\"Detection of dialup_admin interface for the freeradius radius server.\n\n The script sends a connection request to the server and attempts to detect dialup_admin\n web based administration interface for the freeradius radius server.\");\n\n script_xref(name:\"URL\", value:\"https://github.com/FreeRADIUS/dialup-admin\");\n\n script_tag(name:\"qod_type\", value:\"remote_banner\");\n\n exit(0);\n}\n\ninclude(\"http_func.inc\");\ninclude(\"http_keepalive.inc\");\ninclude(\"port_service_func.inc\");\ninclude(\"list_array_func.inc\");\ninclude(\"host_details.inc\");\n\nport = http_get_port( default:80 );\n\nrootInstalled = FALSE;\n\nforeach dir( make_list_unique( \"/\", \"/dialup\", http_cgi_dirs( port:port ) ) ) {\n\n if( rootInstalled ) break;\n\n install = dir;\n if( dir == \"/\" ) dir = \"\";\n\n url = dir + \"/\";\n res = http_get_cache( port:port, item:url );\n\n url2 = dir + \"/content.html\";\n res2 = http_get_cache( port:port, item:url2 );\n\n # <title>\n #dialup administration</title>\n if( egrep( string:res, pattern:\"dialup administration</title>\" ) || egrep( string:res2, pattern:\"<b>A web based administration interface for the freeradius radius server</b>\" ) ) {\n\n # Version isn't exposed by the application\n version = \"unknown\";\n\n if( install == \"/\" ) rootInstalled = TRUE;\n set_kb_item( name:\"dialup_admin/detected\", value:TRUE );\n set_kb_item( name:\"dialup_admin/\" + port + \"/version\", value:version );\n\n cpe = \"cpe:/a:freeradius:dialup_admin\";\n\n register_product( cpe:cpe, location:install, port:port, service:\"www\" );\n\n log_message( data:build_detection_report( app:\"dialup_admin\",\n version:version,\n install:install,\n cpe:cpe ),\n port:port );\n }\n}\n", "naslFamily": "Product detection", "immutableFields": [], "cvss2": {}, "cvss3": {}, "_state": {"dependencies": 1647589307, "score": 0}}
dialup_admin Detection