Re: Plugin 13852

[Renaud Deraison <deraison@nessus.org>]

On Mar 5, 2007, at 12:45 PM, Nelson, C.M. wrote:

> Plugin 13852 v1.16 (tests windows task scheduler vulnerability) has
> reported positive on a fully patch XP SP2 system. The problem reports
> against port 1025. If I scan all ports I get the report, however, if I
> ask for a scan of only port 1025 then plugin 13852 does not report.
After further investigation with Nelson, it turns out this indeed was  
a real vulnerability.
Just a reminder though : a lot of the MSRPC checks need to connect to  
port 135 to obtain the port on which the remote service is running.  
Which means that if you perform while trying to disable port  
scanning, do NOT check the option 'consider unscanned ports as  
closed' as it will prevent nessusd from querying port 135.


                                        -- Renaud
_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus