Thanks for your reply. See the answers to your questions below, but I also think I have some insight into this issue.
If I understand the plugin code correctly, the plugin looks for unquoted service paths AND uninstall paths, but it only shows service paths in the plugin output. In our case, we had unquoted uninstall paths. The plugin was registering as a vulnerability in the report, but not providing any output (besides the boilerplate), so there was no way to know why the plugin had fired. To me, that’s confusing behavior, though I’m not sure if it was intended or a mistake.
Is there any way to get this fixed?
As an aside, how do I learn to become a contributor to the plugins/project? I’d be glad to be able to participate in the community once I start understanding nasl code better.
As promised, the answers to your questions:
- GVM 8.0+beta1; OpenVAS Scanner 6.0+beta2; I’ll monitor the other thread you linked and report back about openvas-smb when I figure out how.
- We’re using Greenbone Community Feed, currently running plugin set 201810231323.
- All the ones we have; XP, 7, 10, Server 2012, 2008, Embedded, and various permutations of those.
- No output besides the boilerplate
- See below :
AdobeARMservice Adobe Acrobat Update Service "C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe" Apple Mobile Device Apple Mobile Device "C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe" Bonjour Service Bonjour Service "C:\Program Files\Bonjour\mDNSResponder.exe" EHttpSrv ESET HTTP Server "C:\Program Files\ESET\ESET Security\ehttpsrv.exe" ekrn ESET Service "C:\Program Files\ESET\ESET Security\ekrn.exe" EraAgentSvc ESET Remote Administrator Agent "C:\Program Files\ESET\RemoteAdministrator\Agent\ERAAgent.exe" eshasrv ESET SHA Service "C:\Program Files\ESET\ESET Security\eshasrv.exe" gupdate Google Update Service (gupdate) "C:\Program Files\Google\Update\GoogleUpdate.exe" /svc gupdatem Google Update Service (gupdatem) "C:\Program Files\Google\Update\GoogleUpdate.exe" /medsvc gusvc Google Software Updater "C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe" idsvc Windows CardSpace "C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe" Lithik-RPC Lithik-RPC "C:\Program Files\lithik\bin\lithik-rpc.exe" MozillaMaintenance Mozilla Maintenance Service "C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe" NetMsmqActivator Net.Msmq Listener Adapter "C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe" -NetMsmqActivator TeraCopyService TeraCopy Service "C:\Program Files\TeraCopy\TeraCopyService.exe" WMPNetworkSvc Windows Media Player Network Sharing Service "C:\Program Files\Windows Media Player\wmpnetwk.exe"