Patch for owa-anonymous.nasl

From: Noam Rathaus (noamrat_private)
Date: Sun Feb 03 2002 - 13:47:39 PST

Next message: Noam Rathaus: "sendmail_expn Patch"

Previous message: Michel Arboi: "snmpwalk "port scanner""
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi,

Here is a small patch to prevent false positives in the plugin:
Index: owa-anonymous.nasl
===================================================================
RCS file: /usr/local/cvs/nessus-plugins/scripts/owa-anonymous.nasl,v
retrieving revision 1.5
diff -r1.5 owa-anonymous.nasl
98c98
<   if("/exchange/logonfrm.asp" >< r)
---
>   if ("/exchange/logonfrm.asp" >< r)
100c100,109
<    security_hole(port);
---
>    soc = open_sock_tcp(port);
>    req = http_get(item:"/exchange/logonfrm.asp", port:port);
>    send(socket:soc, data:req);
>    r = recv(socket:soc, length:4096);
>    close(soc);
> 
>    if (!("This page has been disabled" >< r))
>    {
>     security_hole(port);
>    }

Thanks
Noam Rathaus
http://www.BeyondSecurity.com
http://www.SecuriTeam.com

Next message: Noam Rathaus: "sendmail_expn Patch"
Previous message: Michel Arboi: "snmpwalk "port scanner""
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Sun Feb 03 2002 - 13:47:29 PST