StoneGate firewall client authentication detection 1.4
 
Plugin ID36
Plugin nameStoneGate firewall client authentication detection
Plugin filenameStoneGate firewall authentication detection.plugin
Plugin filesize2644 bytes
Plugin familyFirewalls
Plugin created nameMarc Ruef
Plugin created emailmarc dot ruef at computec dot ch
Plugin created webhttp://www.computec.ch
Plugin created companycomputec.ch
Plugin created date2003/11/14
Plugin updated nameMarc Ruef
Plugin updated emailmarc dot ruef at computec dot ch
Plugin updated webhttp://www.computec.ch
Plugin updated companycomputec.ch
Plugin updated date2004/11/13
Plugin version1.4
Plugin changelogCorrected the plugin structure and added the accuracy values in 1.4
Plugin protocoltcp
Plugin port2543
Plugin procedure detectionopen|sleep|close|pattern_exists StoneGate firewall OR SG login:
Plugin detection accuracy90
Plugin commentThis plugin was written with the ATK Attack Editor.
Bug affectedStoneGate Firewalls
Bug not affectedOther solutions
Bug vulnerability classConfiguration
Bug descriptionStoneGate firewalls provide on port tcp/2545 the possibility of remote administration. This port may be used by an attacker to gain privileged access. Especially over the Internet should this admin interface not be reachable.
Bug solutionReconfigure the StoneGate Firewall so just the administrator can reach the port tcp/2545 from the internal network. Administration over the Internet is too dangerous.
Bug fixing time20 minutes
Bug exploit availabilityYes
Bug remoteYes
Bug localYes
Bug severityMedium
Bug popularity6
Bug simplicity6
Bug impact6
Bug risk6
Bug Nessus riskMedium
Bug check toolsNessus is able to do the same check.
Source Nessus ID11762
Source LiteratureHacking Exposed: Network Security Secrets & Solutions, Stuart McClure, Joel Scambray and George Kurtz, February 25, 2003, 4th Edition, McGraw-Hill Osborne Media, ISBN 0072227427
Source Misc.http://www.computec.ch

This file was generated by the Attack Tool Kit (ATK), the open-sourced security scanner and exploiting framework.