NetBus 2.x Software Detection

high Nessus Plugin ID 10152

Synopsis

A potentially malicious remote administration service is detected.

Description

NetBus 2.x is installed.

NetBus is a remote administration tool that can be used for malicious purposes, such as sniffing what the user is typing, its passwords and so on.

An attacker may have installed it to control hosts on your network.

Furthermore, Netbus authentication may be bypassed.

Solution

Netbus should be removed from the system.

See Also

https://www.securityfocus.com/archive/1/320980

Plugin Details

Severity: High

ID: 10152

File Name: netbus2.nasl

Version: 1.35

Type: remote

Family: Backdoors

Published: 8/18/1999

Updated: 11/15/2018

Configuration: Enable paranoid mode

Supported Sensors: Nessus

Risk Information

CVSS v2

Risk Factor: High

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

CPE: cpe:/a:netbus:netbus

Required KB Items: Settings/ParanoidReport