Search...

Xedus detection

2005-11-03T00:00:00

ID OPENVAS:136141256231014644
Type openvas
Reporter This script is Copyright (C) 2004 David Maciejak
Modified 2018-02-19T00:00:00

Description

The remote host runs Xedus Peer to Peer webserver, it provides the ability to share files, music, and any other media, as well as create robust and dynamic web sites, which can feature database access, file system access, with full .net support.

                                        
                                            ###############################################################################
# OpenVAS Vulnerability Test
# $Id: xedus_detect.nasl 8869 2018-02-19 14:09:59Z cfischer $
#
# Xedus detection
#
# Authors:
# David Maciejak &lt;david dot maciejak at kyxar dot fr&gt;
#
# Copyright:
# Copyright (C) 2004 David Maciejak
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2,
# as published by the Free Software Foundation
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################

# Ref: James Bercegay of the GulfTech Security Research Team

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.14644");
  script_version("$Revision: 8869 $");
  script_tag(name:"last_modification", value:"$Date: 2018-02-19 15:09:59 +0100 (Mon, 19 Feb 2018) $");
  script_tag(name:"creation_date", value:"2005-11-03 14:08:04 +0100 (Thu, 03 Nov 2005)");
  #script_bugtraq_id(11071);
  script_tag(name:"cvss_base", value:"0.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:N");
  script_name("Xedus detection");
  script_category(ACT_GATHER_INFO);
  script_copyright("This script is Copyright (C) 2004 David Maciejak");
  script_family("Peer-To-Peer File Sharing");
  # nb: Don't add a dependency to http_version.nasl or gb_get_http_banner.nasl to avoid cyclic dependency to embedded_web_server_detect.nasl
  script_dependencies("find_service.nasl", "httpver.nasl");
  script_require_ports("Services/www", 4274);
  script_exclude_keys("Settings/disable_cgi_scanning");

  tag_summary = "The remote host runs Xedus Peer to Peer webserver, it provides
  the ability to share files, music, and any other media, as well 
  as create robust and dynamic web sites, which can feature 
  database access, file system access, with full .net support.";

  script_tag(name:"summary", value:tag_summary);

  script_tag(name:"qod_type", value:"remote_banner");

  exit(0);
}

include("http_func.inc");
include("http_keepalive.inc");

exit(0); # FP-prone

port = get_http_port( default:4274 );

url = "/testgetrequest.x?param='free%20openvas'";
req = http_get( item:url, port:port );
rep = http_keepalive_send_recv( port:port, data:req );

if( egrep( pattern:"free openvas", string:rep ) ) {
  set_kb_item( name:"xedus/" + port + "/running", value:TRUE );
  set_kb_item( name:"Services/www/" + port + "/embedded", value:TRUE );
  log_message( port:port );
}

exit( 0 );

JSON Vulners Source

Initial Source

{"bulletinFamily": "scanner", "viewCount": 0, "naslFamily": "Peer-To-Peer File Sharing", "reporter": "This script is Copyright (C) 2004 David Maciejak", "references": [], "description": "The remote host runs Xedus Peer to Peer webserver, it provides\n the ability to share files, music, and any other media, as well \n as create robust and dynamic web sites, which can feature \n database access, file system access, with full .net support.", "hashmap": [{"key": "bulletinFamily", "hash": "bbdaea376f500d25f6b0c1050311dd07"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "8cd4821cb504d25572038ed182587d85"}, {"key": "description", "hash": "5a236942b2077dfd617438c0aa230215"}, {"key": "href", "hash": "49caa6e24abb1e6731682a54d96363a8"}, {"key": "modified", "hash": "80d3ae9bda2c6222d9363cb99b4659e1"}, {"key": "naslFamily", "hash": "65e7b23b67bc8b3328746b8164139fda"}, {"key": "pluginID", "hash": "90e3845c7e7a0ccf3c462744d65a4b59"}, {"key": "published", "hash": "df034d9b90ece22f6e868d36506db720"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "82770c20722a53a0bfaab6142997586f"}, {"key": "sourceData", "hash": "c8c6ff5755bcdfb47d9c2514e9623ba5"}, {"key": "title", "hash": "dbd428e6fa468766d4da120b2c2c996b"}, {"key": "type", "hash": "47c1f692ea47a21f716dad07043ade01"}], "href": "http://plugins.openvas.org/nasl.php?oid=136141256231014644", "modified": "2018-02-19T00:00:00", "objectVersion": "1.3", "enchantments": {"score": {"value": 7.5, "vector": "NONE"}, "vulnersScore": 7.5}, "id": "OPENVAS:136141256231014644", "title": "Xedus detection", "hash": "03bed868789fe983612772e1ea42b9f180cb627268524dd8562c270fac4e9ab9", "edition": 2, "published": "2005-11-03T00:00:00", "type": "openvas", "history": [{"lastseen": "2017-07-02T21:09:11", "bulletin": {"hash": "1ded47863ead42bdf3145d4c9c0743592d46af1231cc83b3d95b4e1a3f1a839f", "viewCount": 0, "reporter": "This script is Copyright (C) 2004 David Maciejak", "references": [], "description": "The remote host runs Xedus Peer to Peer webserver, it provides\n the ability to share files, music, and any other media, as well \n as create robust and dynamic web sites, which can feature \n database access, file system access, with full .net support.", "hashmap": [{"key": "sourceData", "hash": "3cfe8fa4858370d6f1735f58a45223c0"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "href", "hash": "49caa6e24abb1e6731682a54d96363a8"}, {"key": "modified", "hash": "4a37aa23936005ccc24cd059b2201f23"}, {"key": "description", "hash": "5a236942b2077dfd617438c0aa230215"}, {"key": "naslFamily", "hash": "65e7b23b67bc8b3328746b8164139fda"}, {"key": "pluginID", "hash": "90e3845c7e7a0ccf3c462744d65a4b59"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "published", "hash": "df034d9b90ece22f6e868d36506db720"}, {"key": "type", "hash": "47c1f692ea47a21f716dad07043ade01"}, {"key": "cvss", "hash": "8cd4821cb504d25572038ed182587d85"}, {"key": "bulletinFamily", "hash": "bbdaea376f500d25f6b0c1050311dd07"}, {"key": "title", "hash": "dbd428e6fa468766d4da120b2c2c996b"}, {"key": "reporter", "hash": "82770c20722a53a0bfaab6142997586f"}], "naslFamily": "Peer-To-Peer File Sharing", "modified": "2016-12-22T00:00:00", "objectVersion": "1.3", "href": "http://plugins.openvas.org/nasl.php?oid=136141256231014644", "published": "2005-11-03T00:00:00", "enchantments": {"score": {"value": 5.0, "modified": "2017-07-02T21:09:11"}}, "id": "OPENVAS:136141256231014644", "title": "Xedus detection", "bulletinFamily": "scanner", "edition": 1, "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: xedus_detect.nasl 4840 2016-12-22 13:02:22Z cfi $\n#\n# Xedus detection\n#\n# Authors:\n# David Maciejak <david dot maciejak at kyxar dot fr>\n#\n# Copyright:\n# Copyright (C) 2004 David Maciejak\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\n# Ref: James Bercegay of the GulfTech Security Research Team\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.14644\");\n script_version(\"$Revision: 4840 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2016-12-22 14:02:22 +0100 (Thu, 22 Dec 2016) $\");\n script_tag(name:\"creation_date\", value:\"2005-11-03 14:08:04 +0100 (Thu, 03 Nov 2005)\");\n #script_bugtraq_id(11071);\n script_tag(name:\"cvss_base\", value:\"0.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:N\");\n script_name(\"Xedus detection\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"This script is Copyright (C) 2004 David Maciejak\");\n script_family(\"Peer-To-Peer File Sharing\");\n # nb: Don't add a dependency to http_version.nasl to avoid cyclic dependency to embedded_web_server_detect.nasl\n script_dependencies(\"find_service.nasl\", \"httpver.nasl\");\n script_require_ports(\"Services/www\", 4274);\n script_exclude_keys(\"Settings/disable_cgi_scanning\");\n\n tag_summary = \"The remote host runs Xedus Peer to Peer webserver, it provides\n the ability to share files, music, and any other media, as well \n as create robust and dynamic web sites, which can feature \n database access, file system access, with full .net support.\";\n\n script_tag(name:\"summary\", value:tag_summary);\n\n script_tag(name:\"qod_type\", value:\"remote_banner\");\n\n exit(0);\n}\n\ninclude(\"http_func.inc\");\ninclude(\"http_keepalive.inc\");\n\nexit(0); # FP-prone\n\nport = get_http_port( default:4274 );\n\nurl = \"/testgetrequest.x?param='free%20openvas'\";\nreq = http_get( item:url, port:port );\nrep = http_keepalive_send_recv( port:port, data:req );\n\nif( egrep( pattern:\"free openvas\", string:rep ) ) {\n set_kb_item( name:\"xedus/\" + port + \"/running\", value:TRUE );\n set_kb_item( name:\"Services/www/\" + port + \"/embedded\", value:TRUE );\n log_message( port:port );\n}\n\nexit( 0 );\n", "type": "openvas", "history": [], "cvss": {"score": 0.0, "vector": "NONE"}, "cvelist": [], "lastseen": "2017-07-02T21:09:11", "pluginID": "136141256231014644"}, "differentElements": ["modified", "sourceData"], "edition": 1}], "cvss": {"score": 0.0, "vector": "NONE"}, "cvelist": [], "lastseen": "2018-02-20T17:21:49", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: xedus_detect.nasl 8869 2018-02-19 14:09:59Z cfischer $\n#\n# Xedus detection\n#\n# Authors:\n# David Maciejak <david dot maciejak at kyxar dot fr>\n#\n# Copyright:\n# Copyright (C) 2004 David Maciejak\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\n# Ref: James Bercegay of the GulfTech Security Research Team\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.14644\");\n script_version(\"$Revision: 8869 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-02-19 15:09:59 +0100 (Mon, 19 Feb 2018) $\");\n script_tag(name:\"creation_date\", value:\"2005-11-03 14:08:04 +0100 (Thu, 03 Nov 2005)\");\n #script_bugtraq_id(11071);\n script_tag(name:\"cvss_base\", value:\"0.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:N\");\n script_name(\"Xedus detection\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"This script is Copyright (C) 2004 David Maciejak\");\n script_family(\"Peer-To-Peer File Sharing\");\n # nb: Don't add a dependency to http_version.nasl or gb_get_http_banner.nasl to avoid cyclic dependency to embedded_web_server_detect.nasl\n script_dependencies(\"find_service.nasl\", \"httpver.nasl\");\n script_require_ports(\"Services/www\", 4274);\n script_exclude_keys(\"Settings/disable_cgi_scanning\");\n\n tag_summary = \"The remote host runs Xedus Peer to Peer webserver, it provides\n the ability to share files, music, and any other media, as well \n as create robust and dynamic web sites, which can feature \n database access, file system access, with full .net support.\";\n\n script_tag(name:\"summary\", value:tag_summary);\n\n script_tag(name:\"qod_type\", value:\"remote_banner\");\n\n exit(0);\n}\n\ninclude(\"http_func.inc\");\ninclude(\"http_keepalive.inc\");\n\nexit(0); # FP-prone\n\nport = get_http_port( default:4274 );\n\nurl = \"/testgetrequest.x?param='free%20openvas'\";\nreq = http_get( item:url, port:port );\nrep = http_keepalive_send_recv( port:port, data:req );\n\nif( egrep( pattern:\"free openvas\", string:rep ) ) {\n set_kb_item( name:\"xedus/\" + port + \"/running\", value:TRUE );\n set_kb_item( name:\"Services/www/\" + port + \"/embedded\", value:TRUE );\n log_message( port:port );\n}\n\nexit( 0 );\n", "pluginID": "136141256231014644"}