5075 matches found
XoloX Detection
The remote host is using XoloX, a P2P program which might not be suitable for a business environment. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid11431; scriptversion"1.16"; scriptnameenglish:"XoloX Detection"; scriptsummaryenglish:"Determines if XoloX is installed...
Trojan Horse Detection
An unknown service was found running on this port. Trojan Horses and other malware may sometimes open these ports to allow remote access to the machine. Ensure that this port is intended to be open and controlled by legitimate software installed by the administrator. %NASLMINLEVEL 70300 C Tenable...
Unknown Service Detection: Banner Retrieval
Nessus was unable to identify a service on the remote host even though it returned a banner of some type. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid11154; scriptversion"1.69"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/07/26";...
Web Server UDDI Detection
The remote web server supports Universal Description, Discovery, and Integration UDDI requests, which are a standard way for businesses to publish service listings. Copyright by John [email protected] See the Nessus Scripts License for details include"compat.inc"; ifdescription...
RemotelyAnywhere WWW Detection
A RemotelyAnywhere WWW server is running on the remote host. According to NAVCIRT, attackers use this management tool as a backdoor. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. Script audit and contributions from Carmichael Security Erik Anderson nb: domain no longer exists Broken link...
Microsoft Windows - Local Users Information : User Has Never Logged In
Using the supplied credentials, Nessus was able to list local users who have never logged into their accounts. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10915; scriptversion"1.19"; scriptcvsdate"Date: 2018/08/13 14:32:39"; scriptnameenglish:"Microsoft Windows -...
Microsoft Windows - Local Users Information : Never Changed Passwords
Using the supplied credentials, Nessus was able to list local users who have never changed their passwords. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10914; scriptversion"1.22"; scriptcvsdate"Date: 2019/07/08 10:52:29"; scriptnameenglish:"Microsoft Windows - Loc...
Microsoft Windows Domain User Information
Using the supplied credentials, Nessus was able to retrieve information for each domain user. Note that this plugin itself does not issue a report and only serves to store information about each domain user in the KB for further checks. C Tenable Network Security, Inc. include"compat.inc"; if...
Microsoft Windows - Users Information : Never Changed Password
Using the supplied credentials, Nessus was able to list users who have never changed their passwords. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10898; scriptversion"1.23"; scriptcvsdate"Date: 2018/08/13 14:32:39"; scriptnameenglish:"Microsoft Windows - Users...
IBM HTTP Server 1.3.x - Source Code Disclosure
IBM HTTP Server 1.3.x - Source Code Disclosure source: https://www.securityfocus.com/bid/3518/info Due to an input validation error in IBM HTTP Server for the AS/400, it is possible for a remote attacker to make a specially web crafted web request which will display script source code. If a '/' i...
IBM HTTP Server 1.3.x - Source Code Disclosure
source: https://www.securityfocus.com/bid/3518/info Due to an input validation error in IBM HTTP Server for the AS/400, it is possible for a remote attacker to make a specially web crafted web request which will display script source code. If a '/' is appended to the end of a request for an...
[COVERT-2001-03] Oracle 8i SQLNet Header Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Network Associates, Inc. COVERT Labs Security Advisory June 27, 2001 Oracle 8i SQLNet Header Vulnerability COVERT-2001-03 o Synopsis A vulnerability in the Oracle implementation of the TNS Transparent Network Substrate over Net8 SQLNet protocol allows...
SynAttackProtect.txt
[email protected] Bug / Security / Advisory 21,November, 2000 Killing NT 4.0 HOT FIXES or NO / SP6a Remotely using SynAttackProtect Key Corrected version and solution FOUND : /// Vulnerable Systems \\ Windows NT 4.0 SP6a + with or without HOT Fixes + SynAttackProtect set /// RISK FACTOR \...
[COVERT-2000-10] Windows NetBIOS Unsolicited Cache Corruption
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Network Associates, Inc. COVERT Labs Security Advisory August 29, 2000 Windows NetBIOS Unsolicited Cache Corruption COVERT-2000-10 o Synopsis The Microsoft Windows implementation of the NetBIOS cache allows a remote attacker to insert and flush dynami...
Microsoft Windows NT 4.0 - Remote Registry Request Denial of Service (MS00-040) (2)
source: https://www.securityfocus.com/bid/1331/info In special circumstances while handling requests to access the Remote Registry Server, Windows NT 4.0 can crash due to winlogon.exe's inability to process specially malformed remote registry requests. Rebooting the machine would be required in...
NFS Share Export List
This plugin retrieves the list of NFS exported shares. C Tenable Network Security, Inc. include 'compat.inc' ; if description scriptid10437; scriptversion"1.36"; scriptcvsdate"Date: 2019/10/04 16:48:26"; scriptnameenglish:"NFS Share Export List"; scriptsummaryenglish:"Gets a list of exported NFS...
[COVERT-2000-06] Initialized Data Overflow in Xlock
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Network Associates, Inc. COVERT Labs Security Advisory May 29, 2000 Initialized Data Overflow in Xlock COVERT-2000-06 o Synopsis An implementation vulnerability in xlock allows global variables in the initialized data section of memory to be...
Microsoft Windows SMB Registry : NT4 Service Pack Version Detection
Nessus was able to determine the Service Pack version of the Windows NT system by reading the following registry key : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\CSDVersion C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10401; scriptversion"1.56";...
Aladdin eToken 3.3.3.x Hardware USB Key Private Data Extraction
@Stake Inc. L0pht Research Labs www.atstake.com www.L0pht.com Security Advisory Advisory Name: eToken Private Information Extraction and Physical Attack Release Date: May 4, 2000 Application: N/A Platform: Aladdin eToken USB Key 3.3.3.x Severity: An attacker can access all private information...
ISSalert: ISS Security Alert Summary: Volume 5 Number 3
ISS Security Alert Summary April 1, 2000 Volume 5 Number 3 X-Force Vulnerability and Threat Database: http://xforce.iss.net/ To receive these Alert Summaries, subscribe to the ISS Alert mailing list. Send an email to [email protected], and within the body of the message type: 'subscribe alert'...