9549 matches found
RemotelyAnywhere SSH Detection
The RemotelyAnywhere SSH server is running on this system. According to NAVCIRT, attackers target this management tool. C Tenable Network Security, Inc. Script audit and contributions from Carmichael Security Erik Anderson nb: domain no longer exists Broken link deleted include"compat.inc";...
RemotelyAnywhere WWW Detection
A RemotelyAnywhere WWW server is running on the remote host. According to NAVCIRT, attackers use this management tool as a backdoor. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. Script audit and contributions from Carmichael Security Erik Anderson nb: domain no longer exists Broken link...
Open Port Re-check
One of several ports that were previously open are now closed or unresponsive. There are several possible reasons for this : - The scan may have caused a service to freeze or stop running. - An administrator may have stopped a particular service during the scanning process. This might be an...
Brian Dorricott MAILTO 1.0.7-9 - Unauthorized Mail Server Use
Brian Dorricott MAILTO 1.0.7-9 - Unauthorized Mail Server Use source: https://www.securityfocus.com/bid/3669/info MAILTO is a program maintained by Brian Dorricott. It enables web servers to allow forms to be converted into mail messages that can be sent to numerous recipients. An issue exists in...
Webalizer < 2.01-09 Multiple XSS
Webalizer, a web server log analysis application, was detected on the remote host. This version of Webalizer has multiple cross-site scripting vulnerabilities that could allow malicious HTML tags to be injected in the reports. %NASLMINLEVEL 70300 This script was written by Georges Dagousset See t...
DCE Services Enumeration
By sending a Lookup request to the portmapper TCP 135 or epmapper PIPE it was possible to enumerate the Distributed Computing Environment DCE services running on the remote port. Using this information it is possible to connect and bind to each service by sending an RPC request to the remote...
Acme.Serve 1.7 - Arbitrary File Access
source: https://www.securityfocus.com/bid/2809/info Acme.Serve is a free, open-source, embeddable webserver written in Java. It is small, is intended to provide minimal functionality, and is fully compatible with JavaServer. Acme.Serve 1.7 comes with a webserver that listens on port 9090. This...
cfingerd Version Detection
Nessus was able to detect the version of cfingerd running on the remote host. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid10651; scriptversion "1.13"; scriptnameenglish:"cfingerd Version Detection"; scriptsummaryenglish:"cfingerd version"; scriptsetattribute...
Possible DoS to hosts running Veritas Netbackup
Possible DoS for hosts running Veritas Netbackup Client Tested OS: solaris 7 Netbackup Version: NetBackup-Solaris2.6 3.2GA Cause a remote host running Veritas Netbackup client to fully utilize it's cpus. Here's the DoS. Run multiple nc netcat commands using a full range of ports from some remote...
HTTP Protocol Version Detection
This script determines which version of the HTTP protocol the remote host is speaking C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid10582; scriptversion "1.37"; scriptnameenglish:"HTTP Protocol Version Detection"; scriptsetattributeattribute:"synopsis", value: "HTTP...
CGIForum cgiforum.pl thesection Parameter Traversal Arbitrary File Access
The 'cgiforum.pl' CGI is installed. This CGI has a well known security flaw that could let a remote attacker read arbitrary files on the remote host. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; ifdescription scriptid10552;...
UtilMind Mail List 1.7 - Users Can Execute Commands
Exploit for cgi platform in category web applications =================================================== UtilMind Mail List 1.7 - Users Can Execute Commands =================================================== !/usr/bin/perl -w Mailing List & News Version 1.7 / PoC Exploit. UtilMind Solutions /...
ListMail 112 - Command Execution
!/usr/bin/perl -w Listmail v112 by P.M.Systems / PoC Exploit Listmail is a powerful, hands-free mailing list manager which is exploitable due to an insecure open call. This exploit will attempt to bind a shell at port 60179/fido by using inetd. Code to spawn an xterm is as always included...
MultiHTML multihtml.pl Traversal Arbitrary File Access
The 'multihtml.pl' CGI is installed. This CGI has a well known security flaw that lets an attacker read arbitrary files on the remote host through the 'multi' parameter. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; ifdescription...
pam_smb / pam_ntdom User Name Remote Overflow
The remote telnet server shuts the connection abruptly when given a long username followed by a password. Although Nessus could not be 100% positive, it may mean that the remote host is using an older pamsmb or pamntdom pluggable authentication module to validate user credentials against a NT...
Trinity v3 Trojan Detection
The remote host appears to be running Trinity v3, a Trojan Horse that can be used to control your system or make it attack another network this is actually called a Distributed Denial Of Service attack tool. It is very likely that this host has been compromised C Tenable Network Security, Inc...
AMANDA Client Version
The remote host is running an AMANDA backup system client. AMANDA is a backup system that allows a single backup server to backup multiple hosts. This script was written by Paul Ewing See the Nessus Scripts License for details include"compat.inc"; ifdescription scriptid10462; scriptversion "1.22"...
Microsoft Windows SMB Registry : SFCDisable Key Permission Weakness
The registry key HKLM\SOFTWARE\Microsoft\Windows NT\WinLogon\SFCDisable has its value set to a value other than 0 or 4. Any value other than 0 or 4 disables the Windows File Protection, which allows any user on the remote host to view / modify any file he wants. This probably means that this host...
AFS Client Version Detection
This detects the AFS client version by connecting to the AFS callback port and processing the buffer received. The client version gives potential attackers additional information about the system they are attacking. Versions and types should be ommited where possible. This script was written by...
OpenSSH < 2.1.1 UseLogin Local Privilege Escalation
According to its banner, the remote host appears to be running OpenSSH version older than 2.1.1. Such versions are reportedly affected by a local privilege esclation vulnerability. If the UseLogin option is enabled, then sshd does not switch to the uid of the user logging in. Instead, sshd relies...