Cheops NG Without Password Network Vulnerability

Summary

The remote service does not require a password for access. Description : The Cheops NG agent on the remote host is running without authentication. Anyone can connect to this service and use it to map your network, port scan machines and identify running services.

Solution

Restrict access to this port or enable authentication by starting the agent using the '-p' option.

Severity

Classification

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Apple Safari Multiple Memory Corruption Vulnerabilities-03 Aug14 (Mac OS X)
Adobe Reader Old Plugin Signature Bypass Vulnerability (Windows)
Adobe Reader Unspecified Vulnerability (Windows)
Apache CouchDB Web Administration Interface Cross Site Scripting Vulnerability
Adobe Reader Plugin Signature Bypass Vulnerability (Mac OS X)

Cheops NG without password

Take action and discover your vulnerabilities