  ![Fixed [Selected]](on-vulfixed.gif) |  |
| |
Vulnerability
| 10021 | Identd enabled | 1 System | Low Risk |
|---|
| Description | The ident service appears to be running on the remote host. This service provides sensitive information to an attacker, allowing them to enumerate which accounts are running which services. | ||||
|---|---|---|---|---|---|
| Solution | Disable this service or restrict it to trusted IP addresses | ||||
| CVE Reference | CVE-1999-0629 | CVSS2 .0 (Low) (AV:N/AC:L/Au:N/C:N/I:N/A:N) | |||
| Systems | www.your_company.fr
(192.168.0.105)
|
|---|
|
Vulnerability
| 10640 | Kerberos PingPong DOS | 1 System | Low Risk |
|---|
| Description | The remote kerberos server seems to be vulnerable to a pingpong attack. When contacted on the UDP port, this service always responds, even to bogus data. An attacker can cause a denial of service attack, by spoofing a packet between two machines running this service. This will cause them to spew data at each other, saturating the network. | ||||
|---|---|---|---|---|---|
| Solution | Disable this service in /etc/inetd.conf. | ||||
| CVE Reference | CVE-1999-0103 | CVSS2 5.0 (Medium) (AV:N/AC:L/Au:N/C:N/I:N/A:P) | |||
| Systems | www.your_company.fr
(192.168.0.105)
|
|---|