Trojan/Backdoor - SyGate Detection

high Nessus Network Monitor Plugin ID 1918

Synopsis

The remote host is running an inherently insecure protocol or application.

Description

The SyGate engine remote controller seems to be running on this port. It may be used by malicious users which are on the same subnet as yours to reconfigure this SyGate engine.

Solution

Uninstall the engine if not necessary.

Plugin Details

Severity: High

ID: 1918

Family: Backdoors

Published: 8/20/2004

Updated: 3/6/2019

Nessus ID: 10274

Risk Information

VPR

Risk Factor: Medium

Score: 4.2

CVSS v2

Risk Factor: High

Base Score: 7.2

Temporal Score: 7.2

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS v3

Risk Factor: High

Base Score: 8.4

Temporal Score: 8.4

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:H/RL:U/RC:X

Vulnerability Information

CPE: cpe:/a:sybergen:sygate

Reference Information

CVE: CVE-2000-0113

BID: 952