NSEDoc

Scripts (show 437)(437)Scripts (437)

Libraries (show 106)(106)Libraries (106)

File `wdb-version`

Script types: portrule
Categories: default, version, discovery, vuln
Download: http://nmap.org/svn/scripts/wdb-version.nse

User Summary

Detects vulnerabilities and gathers information (such as version numbers and hardware support) from VxWorks Wind DeBug agents.

Wind DeBug is a SunRPC-type service that is enabled by default on many devices that use the popular VxWorks real-time embedded operating system. H.D. Moore of Metasploit has identified several security vulnerabilities and design flaws with the service, including weakly-hashed passwords and raw memory dumping.

Script Arguments

mount.version, nfs.version, rpc.protocol

See the documentation for the rpc library.

Example Usage

nmap -sU -p 17185 --script wdb-version <target>

Script Output

17185/udp open  wdb  Wind DeBug Agent 2.0
| wdb-version:
|   VULNERABLE: Wind River Systems VxWorks debug service enabled. See http://www.kb.cert.org/vuls/id/362332
|   Agent version: 2.0
|   VxWorks version: VxWorks5.4.2
|   Board Support Package: PCD ARM940T REV 1
|   Boot line: host:vxWorks.z

Requires

Author: Daniel Miller

License: Same as Nmap--See http://nmap.org/book/man-legal.html

Sponsors

NSEDoc

Categories

Scripts (show 437)(437)Scripts (437)

Libraries (show 106)(106)Libraries (106)

File `wdb-version`

User Summary

Script Arguments

mount.version, nfs.version, rpc.protocol

Example Usage

Script Output

Requires

Nmap Site Navigation

Sponsors

NSEDoc

Categories

Scripts (show 437)(437)Scripts (437)

Libraries (show 106)(106)Libraries (106)

File wdb-version

User Summary

Script Arguments

mount.version, nfs.version, rpc.protocol

Example Usage

Script Output

Requires

Nmap Site Navigation

File `wdb-version`