p.remek1 at googlemail
Sep 26, 2008, 7:30 AM
Post #1 of 2
I have a Solaris 10 box which is vulnerable to Solaris 10 Telnet
authentication bypass but when I scan this box with nessus it doesn't report
the vulnerability. I am able to expolit it manually with command *# telnet
-l-fbdin 18.104.22.168* so the box really is exploitable. I also took a look at
network traffic with wireshark and nessus actually does expoit the box - it
logs into the box thru this vulnerabilty but nothing is reported then. I
tried to do it in GUI and also in cmd line: *C:\Program
Files\Tenable\Nessus>NessusCmd.exe>NessusCmd.exe -V -i 24323 22.214.171.124*.
So, is this a bug or am I missing something else ?