Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.104155
Category:Nmap NSE net
Title:Nmap NSE net: rmi-dumpregistry
Summary:Connects to a remote RMI registry and attempts to dump all of its objects.;;First it tries to determine the names of all objects bound in the registry, and then it tries to;determine information about the objects, such as the class names of the superclasses and;interfaces. This may, depending on what the registry is used for, give valuable information about;the service. E.g, if the app uses JMX (Java Management eXtensions), you should see an object called;'jmxconnector' on it.;;It also gives information about where the objects are located, (marked with @:port in the;output).;;Some apps give away the classpath, which this scripts catches in so-called 'Custom data'.
Description:Summary:
Connects to a remote RMI registry and attempts to dump all of its objects.

First it tries to determine the names of all objects bound in the registry, and then it tries to
determine information about the objects, such as the class names of the superclasses and
interfaces. This may, depending on what the registry is used for, give valuable information about
the service. E.g, if the app uses JMX (Java Management eXtensions), you should see an object called
'jmxconnector' on it.

It also gives information about where the objects are located, (marked with @:port in the
output).

Some apps give away the classpath, which this scripts catches in so-called 'Custom data'.

CVSS Score:
0.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:N

CopyrightCopyright (C) 2011 NSE-Script: The Nmap Security Scanner; NASL-Wrapper: Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.