BitKeeper remote command execution 1.0
 
Plugin ID301
Plugin nameBitKeeper remote command execution
Plugin filenameBitKeeper remote command execution.plugin
Plugin filesize2124 bytes
Plugin familyHTTP
Plugin created nameMarc Ruef
Plugin created emailmarc.ruef at computec.ch
Plugin created webhttp://www.computec.ch
Plugin created companycomputec.ch
Plugin created date2005/01/04
Plugin version1.0
Plugin protocoltcp
Plugin port8080
Plugin procedure detectionopen|send HEAD / HTTP/1.0\n\n|sleep|close|pattern_exists Server: bkhttp/0.3
Plugin detection accuracy85
Plugin commentThe NASL script is Copyright (C) 2002 Renaud Deraison
Bug affectedBitKeeper
Bug vulnerability classUnknown
Bug descriptionThe remote host is running a version 3.0.x of BitKeeper. Some versions of this service are known to allow anyone execute arbitrary commands with the privileges of the BitKeeper daemon.
Bug solutionContact the vendor for a fix.
Bug fixing timeApprox. 30 minutes
Bug exploit availabilityMaybe
Bug remoteYes
Bug localMaybe
Bug severityHigh
Bug popularity7
Bug simplicity6
Bug impact9
Bug risk7
Bug Nessus riskHigh
Bug check toolsNessus can check this flaw with the plugin 11198 (BitKeeper remote command execution).
Source SecuriTeam URLhttp://www.securiteam.com/securitynews/5TP0D0K8UQ.html
Source Nessus ID11198
Source LiteratureHacking Exposed: Network Security Secrets & Solutions, Stuart McClure, Joel Scambray and George Kurtz, February 25, 2003, 4th Edition, McGraw-Hill Osborne Media, ISBN 0072227427
Source Misc.http://www.computec.ch

This file was generated by the Attack Tool Kit (ATK), the open-sourced security scanner and exploiting framework.