Summary
This remote host is running rlogin service.
Solution
Disable rlogin service and use ssh instead.
Insight
rlogin has several serious security problems,
- All information, including passwords, is transmitted unencrypted.
- .rlogin (or .rhosts) file is easy to misuse (potentially allowing anyone to login without a password)
Impact Level: System
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-1999-0651 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities