NFS share information Disclosure vulnerability

Vulnerabilities:

The Nessus detects a vulnerability of NFS share information disclosure

Vulnerability verification:

1. Scan and verify the vulnerability and output the shared directory.

use auxiliary/scanner/nfs/nfsmount
Copy the code

2. Mount the directory of the destination IP address to the local directory.

The mount -t NFS 192.168.99.23: / usr/SAP/trans/TMP/testCopy the code

3. Specify the NFS server to output the directory list

Showmount -e 192.168.99.23Copy the code