PCI DSS Compliance : Remote Access Software Has Been Detected

high Nessus Plugin ID 56209

Language:

Synopsis

Remote access software has been detected.

Description

Due to increased risk to the cardholder data environment when remote access software is present, 1) justify the business need for this software to the ASV and confirm it is implemented securely, or 2) confirm it is disabled/ removed. Consult your ASV if you have questions about this Special Note.

Plugin Details

Severity: High

ID: 56209

File Name: pci_remote_services.nasl

Version: 1.32

Type: summary

Family: Policy Compliance

Published: 9/15/2011

Updated: 11/6/2020

Supported Sensors: Nessus

Risk Information

CVSS Score Rationale: Score from an in depth analysis done by tenable

CVSS v2

Risk Factor: Medium

Base Score: 6.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS Score Source: manual

CVSS v3

Risk Factor: High

Base Score: 7.3

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Vulnerability Information

Required KB Items: Settings/PCI_DSS

Excluded KB Items: Settings/PCI_DSS_local_checks

Detections

Analytics