mailing list archives
Re: Some scripts for analyzing NetBus
From: Fyodor <fyodor () insecure org>
Date: Sat, 15 Jan 2011 13:33:55 -0800
On Sat, Jan 15, 2011 at 05:37:53PM +0200, Toni Ruottu wrote:
To this mail, I have attached a patch that should fix all the netbus
script problems that have been pointed out.
Thanks, I've applied that. I also put netbus-auth-bypass in the safe
category as you suggested in an earlier mail today. That matches
realvnc-auth-bypass.nse, which is also in the safe category. There is
the whole "likely to invalidate existing connections to the Netbus
server" aspect, but it sounds like a normal nmap -A scan will do that
anyway. Also, anyone who actually uses Netbus as a legit remote
administration application has bigger issues to deal with.
Sent through the nmap-dev mailing list
Archived at http://seclists.org/nmap-dev/