Detections
Analytics
SWAT Server Detection
info Nessus Network Monitor Plugin ID 1470
Synopsis
The remote host is running SWAT (Samba Web Administration Tool).Description
The remote host is running SWAT (Samba Web Administration Tool). SWAT allows Samba users to change their passwords and provides the system administrator with an easy-to-use web interface to configure Samba. It is not recommended to let SWAT be accessed by the world, as it allows an intruder to attempt to brute force some account passwords. In addition to this, the traffic between SWAT and the web client is not ciphered, so an eavesdropper can gain cleartext passwords easily.Solution
Disable SWAT once your Samba server is configured.See Also
http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/SWAT.html
Plugin Details
Severity: Info
ID: 1470
Family: Web Servers
Published: 8/20/2004
Updated: 9/16/2018
Nessus ID: 10273
Risk Information
VPR
Risk Factor: Medium
Score: 6.7
Vulnerability Information
CPE: cpe:/a:samba:samba
Reference Information
CVE: CVE-2000-0935
BID: 1872