Filepaths contain Dangerous characters (Linux)

info Nessus Plugin ID 168982

Language:

Synopsis

This Tenable product detected files or paths on the scanned Unix-like system which contain characters with command injection or privilege escalation potential.

Description

This Tenable product detected files or paths on the scanned Unix-like system which contain characters with command injection or privilege escalation potential. Although almost any character is valid for an entry in this kind of filesystem, such as semicolons, use of some of them may lead to problems or security compromise when used in further commands.

This product has chosen in certain plugins to avoid digging within those files and directories for security reasons.
These should be renamed to avoid security compromise.

Solution

Rename these files or folders to not include dangerous characters.

Plugin Details

Severity: Info

ID: 168982

File Name: dangerous_filepaths_nix.nasl

Version: 1.1

Type: summary

Family: Misc.

Published: 12/21/2022

Updated: 7/24/2024

Supported Sensors: Nessus

Vulnerability Information

Required KB Items: Host/Linux/dangerous_filepaths_found

Detections

Analytics