Systems Management Question

K2000 PCI Scan (/kbox/datastore/internal/tftpboot/dummy)

04/24/2018 1458 views
Our K2000 is getting flagged during PCI scan has anyone had this problem? If so what was the approach to fixing it? Thank you in advance for the help. 

11356 (1) - NFS Exported Share Information Disclosure
It is possible to access NFS shares on the remote host.
At least one of the NFS shares exported by the remote server could be mounted by the scanning host. An attacker may be able to leverage this to read (and possibly write) files on remote host.
Configure NFS on the remote host so that only authorized hosts can mount its remote shares.
Risk Factor
CVSS Base Score
10.0 (CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
CVE CVE-1999-0170
CVE CVE-1999-0211
CVE CVE-1999-0554
Exploitable With
Metasploit (true)
Plugin Information:
Published: 2003/03/12, Modified: 2018/02/20
Plugin Output

kace-dc (udp/2049)

The following NFS shares could be mounted :

+ /kbox/datastore/internal/tftpboot/dummy
0 Comments   [ + ] Show comments


All Answers

I got the same alert from Qualys (our security scan system) and contacted support about it. Turns out this is required for access to PXE/Netboot. There's no unexpected high security access like "/etc/passwd" found in results, only tftpboot, so it's not a security concern for us. We also only accept PXE/Netboot from wired connection from only our org's IP range, so access to the share is already limited.
Answered 05/02/2018 by: JasonEgg
Red Belt

This website uses cookies. By continuing to use this site and/or clicking the "Accept" button you are providing consent Quest Software and its affiliates do NOT sell the Personal Data you provide to us either when you register on our websites or when you do business with us. For more information about our Privacy Policy and our data protection efforts, please visit GDPR-HQ