Lucene search
K

9551 matches found

Tenable Nessus
Tenable Nessus
added 2004/02/15 12:0 a.m.114 views

MS04-007: ASN.1 Vulnerability Could Allow Code Execution (828028) (uncredentialed check) (HTTP)

The remote Windows host has an ASN.1 library with a vulnerability that could allow an attacker to execute arbitrary code on this host. To exploit this flaw, an attacker would need to send a specially crafted ASN.1 encoded packet with improperly advertised lengths. This particular check sent a...

7.5CVSS6.2AI score0.84008EPSS
Exploits4References3
Tenable Nessus
Tenable Nessus
added 2004/02/11 12:0 a.m.818 views

Host Fully Qualified Domain Name (FQDN) Resolution

Nessus was able to resolve the fully qualified domain name FQDN of the remote host. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid12053; scriptversion"1.17"; scriptsetattributeattribute:"pluginmodificationdate", value:"2025/03/13"; scriptnameenglish:"Host Fully...

5.5AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/02/06 12:0 a.m.50 views

Oracle Database 9i Multiple Functions Local Overflow

The remote Oracle Database, according to its version number, is vulnerable to a buffer overflow in the query SET TIMEZONE. An attacker with a database account may use this flaw to gain the control on the whole database, or even to obtain a shell on this host. %NASLMINLEVEL 70300 C Tenable Network...

10CVSS5.9AI score0.13193EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2004/01/27 12:0 a.m.39 views

MyDoom Virus Backdoor Detection

The MyDoom backdoor is listening on this port. An attacker may connect to it to retrieve sensitive information, e.g. passwords or credit card numbers. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. rev 1.7: fixes a bug introduced in rev 1.6 spotted by Phil Bordelon rev 1.6: MyDoom.B detecti...

5.5AI score
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2004/01/22 12:0 a.m.31 views

Microsoft Windows SMB : WindowsUpdate Disabled

The remote host does not have Windows Update enabled. Enabling WindowsUpdate will ensure that the remote Windows host has all the latest Microsoft Patches installed. C Tenable Network Security, Inc. Thanks to Greg Hoglund for suggesting this. include"compat.inc"; if description scriptid12028;...

5.5AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2004/01/21 12:0 a.m.23 views

Bagle Worm Removal

The remote host had the Bagle worm installed. Nessus attempted to remove it by connecting to port 6777 of the host and using the built-in removal command. However, you should verify that : - The worm was removed properly - The remote host has not been altered in any other way. C Tenable Network...

5.5AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/01/15 12:0 a.m.51 views

DOWNLOADWARE Software Detection

The remote host is using the DOWNLOADWARE program. You should ensure that: - the user intended to install DOWNLOADWARE it is sometimes silently installed - the use of DOWNLOADWARE matches your corporate mandates and security policies. To remove this sort of software, you may wish to check out...

5.5AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2004/01/15 12:0 a.m.16 views

BargainBuddy Software Detection

BargainBuddy is installed on the remote host. This is an adware program that monitors web searches and displays advertisements based on the search terms. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid12010; scriptversion"1.17";...

5.5AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2004/01/15 12:0 a.m.45 views

VCATCH Spyware Detection

The remote host is using the VCATCH program. You should ensure that : - the user intended to install VCATCH it is sometimes silently installed - the use of VCATCH matches your corporate mandates and security policies. To remove this sort of software, you may wish to check out ad-aware or spybot. ...

5.5AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2004/01/13 12:0 a.m.15 views

Zope < 2.6.3 Multiple Vulnerabilities

The remote web server is a version of Zope which is older than version 2.6.3. There are multiple security issues in all releases prior to version 2.6.3 or 2.7 BETA4 which can be exploited by an attacker to perform cross-site scripting attacks, obtain information about the remote host, or disable...

5.5AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2003/11/11 12:0 a.m.82 views

MS03-049: Buffer Overflow in the Workstation Service (828749)

The remote version of Windows contains a flaw in the function NetpValidateName in the WorkStation service that could allow an attacker to execute arbitrary code on the remote host with the SYSTEM privileges. A series of worms Welchia, Spybot, ... are known to exploit this vulnerability in the wil...

7.5CVSS6.2AI score0.83265EPSS
Exploits6References2
Tenable Nessus
Tenable Nessus
added 2003/10/29 12:0 a.m.45 views

DCN HELLO detection

The remote host is running HELLO, an obsolete routing protocol. If possible, this IP protocol should be disabled. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. See RFC 831 & gated source hello.h http://www.zvon.org/tmRFC/RFC891/Output/chapter2.html include'deprecatednasllevel.inc';...

6.9AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2003/10/25 12:0 a.m.43 views

EGP Detection

The remote host is running EGP, an obsolete routing protocol. If possible, this IP protocol should be disabled. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. See RFC 827 & RFC 888 include'deprecatednasllevel.inc'; include"compat.inc"; if description scriptid11908; scriptversion"1.19";...

6.9AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2003/10/25 12:0 a.m.36 views

BGP Service Detection

The remote host is running BGP, a popular routing protocol. This indicates that the remote host is probably a network router. C Tenable Network Security, Inc. See RFC 1771 include"compat.inc"; ifdescription scriptid11907; scriptversion "1.13"; scriptcvsdate"Date: 2019/11/22"; scriptnameenglish:"B...

5.5AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2003/10/08 12:0 a.m.136 views

Microsoft IIS ODBC Tool getdrvrs.exe DSN Creation

ODBC tools are present on the remote host. ODBC tools could allow a malicious user to hijack and redirect ODBC traffic, obtain SQL user names and passwords or write files to the local drive of a vulnerable server. Example: http://www.example.com/scripts/tools/getdrvrs.exe %NASLMINLEVEL 70300 This...

5.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2003/09/29 12:0 a.m.48 views

FsSniffer Backdoor Detection

This host appears to be running FsSniffer on this port. FsSniffer is backdoor which allows an intruder to steal PoP3/FTP and other passwords you use on your system. An attacker may use it to steal your passwords. This script was written by Joseph Mlodzianowski Changes by Tenable: - Revised plugin...

5.5AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2003/09/19 12:0 a.m.62 views

Solaris sadmind AUTH_SYS Credential Remote Command Execution

The remote host is running the sadmind RPC service. It is possible to misuse this service to execute arbitrary commands on this host as root. C Tenable Network Security, Inc. Greatly improved by H D Moore include"compat.inc"; if description scriptid11841; scriptversion"1.34"; scriptcvsdate"Date:...

10CVSS6AI score0.85678EPSS
Exploits9References4
Tenable Nessus
Tenable Nessus
added 2003/09/17 12:0 a.m.80 views

MS03-039 Exploitation Backdoor Account Detection

It was possible to log into the remote host with the login 'e' and the password 'asd321'. A widely available exploit, using one of the vulnerabilities described in the Microsoft Bulletin MS03-039 creates such an account. This probably means that the remote host has been compromised by the use of...

10CVSS5.3AI score0.37799EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2003/09/04 12:0 a.m.63 views

MS03-034: Flaw in NetBIOS Could Lead to Information Disclosure (824105) (uncredentialed check)

The remote host is running a version of the NetBT name service that suffers from a memory disclosure problem. An attacker may send a special packet to the remote NetBT name service, and the reply will contain random arbitrary data from the remote host memory. This arbitrary data may be a fragment...

5CVSS5.8AI score0.25103EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2003/08/15 12:0 a.m.72 views

Postfix < 2.0 Multiple Vulnerabilities

The remote host is running a version of Postfix that is as old as or older than 1.1.12. There are two vulnerabilities in this version that could allow an attacker to remotely disable it, or to be used as a DDoS agent against arbitrary hosts. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

5CVSS5.5AI score0.21261EPSS
Exploits4References2
Rows per page
Query Builder