3) Run BKscan ./bkscan.sh -t 10.0.2.15 -u test -p 123 --debug. Bunch of MST120 was sended and we get true positive:
4) Remove user test from Remote Desktop User list:
5) Run BKscan ./bkscan.sh -t 10.0.2.15 -u test -p 123 --debug. NLA passes but we get false positive because RDP is restricted for this user and MST120 packets are not sended:
Notice: Server said: ERRINFO_SERVER_INSUFFICIENT_PRIVILEGES (0x00000009):The user cannot connect to the server due to insufficient access privileges. but BKscan wrote: [!] Target is VULNERABLE!!!
Thanks nikallass for your issue request. I also fixed it in parallel in 55bbb552a571ae287350d5d2e2deefe5f8bae5a7. If it happens to not work, let me know.
Steps to reproduce:
0) Create user
test
with password123
.1) Add user
test
to Remote Desktop User list:3) Run BKscan
./bkscan.sh -t 10.0.2.15 -u test -p 123 --debug
. Bunch of MST120 was sended and we get true positive:4) Remove user
test
from Remote Desktop User list:5) Run BKscan
./bkscan.sh -t 10.0.2.15 -u test -p 123 --debug
. NLA passes but we get false positive because RDP is restricted for this user and MST120 packets are not sended:Notice: Server said:
ERRINFO_SERVER_INSUFFICIENT_PRIVILEGES (0x00000009):The user cannot connect to the server due to insufficient access privileges.
but BKscan wrote:[!] Target is VULNERABLE!!!