NetBus 1.x Software Detection

high Nessus Plugin ID 10151

Synopsis

A potentially malicious remote administration service is detected.

Description

NetBus 1.x is installed.

NetBus is a remote administration tool that can be used for malicious purposes, such as sniffing what the user is typing, its passwords and so on.

An attacker may have installed it to control hosts on your network.

Furthermore, Netbus authentication may be bypassed.

Solution

Netbus should be removed from the system.

See Also

https://www.securityfocus.com/archive/1/320980

Plugin Details

Severity: High

ID: 10151

File Name: netbus.nasl

Version: 1.36

Type: remote

Family: Backdoors

Published: 8/18/1999

Updated: 4/11/2022

Configuration: Enable thorough checks

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.3

CVSS v2

Risk Factor: High

Base Score: 7.5

Temporal Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

CPE: cpe:/a:netbus:netbus

Exploit Available: true

Exploit Ease: No exploit is required

Reference Information

CVE: CVE-2003-1475

BID: 7538

CWE: 287