iT邦幫忙

0

弱點掃瞄,印表機出現的漏洞,該如何設定?

請問有關hp 印表機掃瞄出來的點,應該如何設定呢?
已經關閉大部分不用的服務了,但是這二個該在何處去設定。
謝謝!
192.168.123.123 soap-http (7627/tcp) Security hole(s)
192.168.123.123 nfs (2049/udp) Security hole(s)

Vulnerability soap-http (7627/tcp) The remote HTTP server
allows an attacker to read arbitrary files
on the remote web server, by employing a
weakness in an included ssi package, by
prepending pathnames with %2e%2e/ (hex-
encoded ../) to the pathname.
Example:
GET /cgi-bin/ssi//%2e%2e/%2e%2e/etc/passwd
will return /etc/passwd.
Solution: upgrade to version 2.20 of thttpd.
Risk factor : High
CVE : CVE-2000-0900
BID : 1737
OID : 1.3.6.1.4.1.25623.1.0.10523

Vulnerability nfs (2049/udp)
Synopsis :
It is possible to access the remote NFS shares without having root privileges.
Description :
Some of the NFS shares exported by the remote server could be
mounted by the scanning host. An attacker may exploit this problem
to gain read (and possibly write) access to files on remote host.
Note that root privileges were not required to mount the remote shares. That is,
the source port to mount the shares was bigger than 1024.
Solution :
Configure NFS on the remote host so that only authorized hosts can mount
the remote shares.
The remote NFS server should prevent mount requests originating from a non-privileged port.
Risk factor :

圖片
  直播研討會
圖片
{{ item.channelVendor }} {{ item.webinarstarted }} |
{{ formatDate(item.duration) }}
直播中

2 個回答

14
ufgeorge
iT邦研究生 1 級 ‧ 2009-12-05 08:30:44
最佳解答

印表機通常系統是寫死在裡面吧,印象中沒有看過可以更新系統的印表機...通常啊,關閉弱點掃描對這些印表機的掃描吧...

12
sbee727
iT邦新手 2 級 ‧ 2009-12-31 17:20:36

之前我有在幫公家機關做弱點掃描時,也遇到這樣狀況,基本上他們資訊室要看到的是那個結果,所以呢我的做法就是先將印表機及共用的資料夾都先取消共用,然後去做弱點掃描偵測,這樣描結果就會正常,不會出現警告的弱點,然後我走後他們看到我把分享的關掉就會自己在去把他打開,所以呢上有政策下有對策....

我要發表回答

立即登入回答