| VID |
23010 |
| Severity |
40 |
| Port |
5556 |
| Protocol |
TCP |
| Class |
Remwatch |
| Detailed Description |
remwatch is installed and allows anyone to execute arbitrary commands.
A cracker may issue shell commands as root by connecting to the remwatch daemon, and issue the command :
" 11T ; /bin/id"
* References:
http://cgi.nessus.org/plugins/dump.php3?id=10202 |
| Recommendation |
Deactivate the remwatch service. Contact your vendor for a patch. |
| Related URL |
CVE-1999-0246 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
