Nessus

Nessus
by Renaud Deraison
Platforms: FreeBSD, IRIX, Linux, NetBSD, OpenBSD, Solaris
Categories: Auditing, General, Network, Ports, RPC, Trojans & Backdoors, Web
Version: v2.0.9
URL: http://www.nessus.org/
Nessus is a remote security scanner for Linux, BSD, Solaris, and other Unices. It is multi-threaded and plug-in-based, has a GTK interface, and performs over 500 remote security checks. It allows for reports to be generated in HTML, XML, LaTeX, and ASCII text, and suggests solutions for security problems.

Nessus and sshd CRC32 compensation attack description wrong 2001-11-05
Bruce Campbell (2 replies)

re: Nessus (excellent tool by the way)

in /usr/local/lib/nessus/plugins/ssh_crc32.nasl

the name of the vulnerability (SSH1 CRC32 compensation

attack) is correct, but the description and risk

factor are incorrect.

Remove...

> This version is vulnerable to a flaw which

> allows an attac...

[ more ] [ reply ]

Nessus and sshd CRC32 compensation attack description wrong 2001-11-05
Anonymous

by the way, my post was supposed to

say change risk factor from "High" to

"Serious" as well.

...

[ more ] [ reply ]

Nessus and sshd CRC32 compensation attack description wrong 2001-11-05
Bruce Campbell

I see it is now fixed.

Thanks for the amazingly fast response !

...

[ more ] [ reply ]