http-frontpage-login
脚本使用类型:
portrule
脚本所属分类:
vuln, safe
脚本下载地址: http://nmap.org/svn/scripts/http-frontpage-login.nse
Checks whether target machines are vulnerable to anonymous Frontpage login.
Older, default configurations of Frontpage extensions allow remote user to login anonymously which may lead to server compromise.
Path prefix to Frontpage directories. Defaults to root ("/").
执行格式
nmap <target> -p 80 --script=http-frontpage-login
PORT STATE SERVICE REASON 80/tcp open http syn-ack | http-frontpage-login: | VULNERABLE: | Frontpage extension anonymous login | State: VULNERABLE | Description: | Default installations of older versions of frontpage extensions allow anonymous logins which can lead to server compromise. | | References: |_ http://insecure.org/sploits/Microsoft.frontpage.insecurities.html
Author: Aleksandar Nikolic
License: VER007 整理 http://www.ver007.com