Summary:

Dell SecureWorks is reporting vulnerabilities on the K1000 and K2000 appliances.

 

Issue:  What is going on?

Dell SecureWorks is reporting vulnerabilities on the K1000 and K2000 appliances similar to those found below:

 

K1000:

THREAT:Unauthorized users can connect to this NetBIOS service without a password1

THREAT:Simple Network Management Protocol (SNMP

THREAT:A null session connection to the IPC$ share was successful

 

K2000:

THREAT:A null session connection to the IPC$ share was successful

THREAT:Unauthorized users can connect to this NetBIOS service without a password

 

These are Windows vulnerabilities, and are inapplicable to the Kace appliances.

 

Resolution:  The Best Practice when scanning a Kace appliance would be to ensure that it is not identified as a windows machine.