Alias(es)Version.Query |
Release DateSep 11, 2006 |
Severityinfo |
ImpactInformation gathering for further attack on fingerd daemon. |
DescriptionIt indicates a possible attempt to find finger daemon version for information gathering. Fingerd daemon provides information such as name, contact info of users who are logged-on to the system to a client request. This log is generated when finger daemon version is probed by a malicious user, it may be used for further attack on the finger daemon. |
Affected ProductsAny system running finger daemon. |
Recommended ActionsThe default action has been set to pass. If this signature is not triggered by legitimate traffic in your network environment, change its action to reset session. |
Coverage IPS
VCM |
Reference/shttp://www.sans.org/y2k/fingerd.htm |
