SMB : Disable the C$ and ADMIN$ shares after the scan (WMI)

info Nessus Plugin ID 55438

Language:

Synopsis

The ADMIN$ and/or $C shares have been disabled after the scan.

Description

To perform a full credentialed scan, Nessus needs the ability to connect to the remote administrative shares (C$ and ADMIN$). If the shares are not available on the network, this plugin will attempt to enable them for the duration of the scan.

You need to explicitly enable this option for this plugin to work:

'Enable administrative shares during the scan'

This option can be found under the following section:

Scan Configuration > Credentials > Windows > Global Settings.

Plugin Details

Severity: Info

ID: 55438

File Name: wmi_disable_shares.nbin

Version: 1.230

Type: local

Family: Settings

Published: 6/27/2011

Updated: 11/12/2024

Supported Sensors: Nessus

Vulnerability Information

CPE: cpe:/o:microsoft:windows

Required KB Items: SMB/name, SMB/login, SMB/password, SMB/transport

Detections

Analytics