Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Finger abuses >> FreeBSD 4.1.1 Finger


Vulnerability Assessment Details

FreeBSD 4.1.1 Finger

Vulnerability Assessment Summary
Finger /path/to/file

Detailed Explanation for this Vulnerability Assessment

There is a bug in the remote finger service that permits anyone to read
arbitrary files on this host by doing a 'finger' command on the name of
targeted file.

For instance :

finger /etc/passwd@target


Will display the content of /etc/passwd

Solution : disable the finger service in /etc/inetd.conf and restart the inetd
process, or upgrade your finger daemon

Network Security Threat Level: High

Networks Security ID: 1803

Vulnerability Assessment Copyright: This script is Copyright (C) 2000 Renaud Deraison

Cables, Connectors


HP ProLiant DL380 Gen9 8SFF Server - E5-2698 v3 - 32Cores - 128GB Ram - 1TB HDD picture

HP ProLiant DL380 Gen9 8SFF Server - E5-2698 v3 - 32Cores - 128GB Ram - 1TB HDD

$299.00



HP ProLiant DL380 Gen9 Server 1x Xeon E5-2620V3 2.40 GHz 16 GB RAM No OS No HDD picture

HP ProLiant DL380 Gen9 Server 1x Xeon E5-2620V3 2.40 GHz 16 GB RAM No OS No HDD

$114.95



Dell PowerEdge R710 2.5

Dell PowerEdge R710 2.5" 2U Server 2x X5670 2.93GHZ 12-Core 128gb 2x 1TB SAS

$214.99



Lenovo SR530 Server (Intel Xeon Silver 4110) (3x 800GB SSD) (NO OS) (48GB RAM) picture

Lenovo SR530 Server (Intel Xeon Silver 4110) (3x 800GB SSD) (NO OS) (48GB RAM)

$599.00



HP ProLiant DL380 G9 Server H240AR 2x Intel Xeon E5-2640 v4 2x800w NO RAM/HDD picture

HP ProLiant DL380 G9 Server H240AR 2x Intel Xeon E5-2640 v4 2x800w NO RAM/HDD

$79.00



Dell PowerEdge R620 Server 2x E5-2660 v2 2.2GHz 20 Cores 256GB RAM 1x 480GB SSD picture

Dell PowerEdge R620 Server 2x E5-2660 v2 2.2GHz 20 Cores 256GB RAM 1x 480GB SSD

$139.99



Dell PowerEdge R730XD Server 2x E5-2620 V3 = 12 Cores 32GB DDR4 H730 Raid iDRAC8 picture

Dell PowerEdge R730XD Server 2x E5-2620 V3 = 12 Cores 32GB DDR4 H730 Raid iDRAC8

$313.00



HYVE ZEUS V1 1U BAREBONE SERVER W/ X9DRD-LF-TW008 2x HS 1x PSU NO RAM HDD RISER picture

HYVE ZEUS V1 1U BAREBONE SERVER W/ X9DRD-LF-TW008 2x HS 1x PSU NO RAM HDD RISER

$114.00



IBM Power S822 8284-22A 12SFF Power8 3.89GHz 6Core 64GB RAM No HDD Server System picture

IBM Power S822 8284-22A 12SFF Power8 3.89GHz 6Core 64GB RAM No HDD Server System

$359.99



CTO Dell PowerEdge R630 Server, 2x Xeon E5-2620V4, 64GB- 512GB RAM, 480GB SSDs picture

CTO Dell PowerEdge R630 Server, 2x Xeon E5-2620V4, 64GB- 512GB RAM, 480GB SSDs

$380.00



Discussions

No Discussions have been posted on this vulnerability.