|
| TC: | 12012 | |
| Description: | TCPMUX is the TCP Port Service MULtiplexer. It listens on port 1/tcp. Only a few systems have TCPMUX enabled. Some IRIX systems have TCPMUX in their default configurations. The CERT organization has received reports that this characteristic has been used by automated scanning tools to identify IRIX systems and launch further attacks. | |
| TC Impact: | Gather Info | |
| Service: | tcpmux |
| Vulnerability Publication: | Unknown | |
| Advisory Copyright: | Unknown | |
| Summary: | A useless server runs on the target system. It can be used to gather information on the system. | |
| Risk: | Low | |
| CVSS 2.0 metrics: | N.A. | |
| CVSS 2.0 Base Score: | 1.0 (Approximated) |
| Vulnerability Impact: |
Gather Info |
|---|
| Host Impact: | An attacker can gather information on the running operating system | |
| Nature of Remediation: | Disable service if not needed. |
| Step required to fix the reported vulnerability: | |
***** Solution type: Undefined ***** Disable TCPMUX in /etc/inetd.conf. |
| References: | ||
| See http://www.ietf.org/rfc/rfc1078.txt and http://www.cert.org/summaries/CS-98.06.html. |
| CVE Link: |
GENERIC-MAP-NOMATCH |
 |
|---|
| Glossary: |
TCPMUX |
|---|