漏洞类别:General remote services
漏洞等级: 
漏洞信息
The target is determined to be a pfSense device, which uses protocols such as SSH for configuration management. These services can be accessed and are an invitation for malicious users to break in.
If this is found externally on your network, this could invite anyone or a bot on the Internet to try to login.
If this is found internally on your network, only those who have access to your network could see the management interface.
QID Detection Logic (remote):
The remote check is based on the operating system and the available SSH service.
漏洞危害
Malicious users can exploit this vulnerability to deploy a range of known attacks against accessible services. Brute force attacks such as password guessing and Denial Of Service are also possible.
解决方案
Consider taking the following precautionary measures:
- Disable services that are not needed.
- Consider putting access controls on these services. Access controls can be put together using the features in the device (if available) or using an external firewall.
- Do not use default passwords and replace them with hard to guess passwords. Change passwords frequently.
0daybank
文章评论