F-Secure Products ZIP/RAR File Scan Evasion (FSC-2009-1)

The remote host has an antivirus product from F-Secure installed. The installed version of the product fails to accurately scan certain ZIP and RAR archive files. Therefore, it may be possible for such files to evade detection from the scanning engine. C Tenable Network Security, Inc...

Xitami Server Detection

Detection of Xitami Server. This script tries to detect an installed Xitami Server and its version. Copyright C 2009 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

ESET Antivirus CAB Scan Evasion

The ESET antivirus application installed on the remote host is affected by a scan evasion vulnerability due to the virus definitions being out of date. In this case, the virus signature database file version of the installed antivirus product is prior to 4036. An attacker can exploit this, by...

Trend Micro OfficeScan Client - DOS

Application: Trend Micro OfficeScan Client for Windows 8.0 sp1 OS: Windows XP ------------------------------------------------------ 1 - Description 2 - Vulnerability 3 - POC/EXPLOIT ------------------------------------------------------ Description OfficeScan is a good antivirus that used in man...

OpenBSD <= 4.5 (IP datagrams) Remote DOS Vulnerability

No description provided by source. / / / / / / / / / / / / / // / / / / / / / / / // / / / // // / / / / / // ///// // // // Helith - 0815 -------------------------------------------------------------------------------- Author : Rembrandt Date : 2009-04-09 Affected Software: OpenBSD Kernel Affect...

OpenBSD 4.5 - IP datagrams Remote Denial of Service

/ / / / / / / / / / / / / // / / / / / / / / / // / / / // // / / / / / // ///// // // // Helith - 0815 -------------------------------------------------------------------------------- Author : Rembrandt Date : 2009-04-09 Affected Software: OpenBSD Kernel Affected OS : OpenBSD 4.3,4,5,...

OpenBSD 4.5 - IP datagrams Remote Denial of Service

OpenBSD 4.5 - IP datagrams Remote Denial of Service / / / / / / / / / / / / / // / / / / / / / / / // / / / // // / / / / / // ///// // // // Helith - 0815 -------------------------------------------------------------------------------- Author : Rembrandt Date : 2009-04-09 Affected Software:...

[SECURITY] Fedora 10 Update: device-mapper-multipath-0.4.8-9.fc10

device-mapper-multipath provides tools to manage multipath devices by instructing the device-mapper multipath kernel module what to do. The tools are : multipath : Scan the system for multipath devices and assemble them. multipathd : Detects when paths fail and execs multipath to update thing s...

Mandriva Update for kdelibs MDKSA-2007:072 (kdelibs)

Check for the Version of kdelibs OpenVAS Vulnerability Test Mandriva Update for kdelibs MDKSA-2007:072 kdelibs Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

SIP Username Enumerator (UDP)

Scan for numeric username/extensions using OPTIONS/REGISTER requests This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SIP Username Enumerator UDP', 'Description' = 'Scan for numeric...

ClamAV < 0.95 Scan Evasion

According to its version, the clamd antivirus daemon on the remote host is earlier than 0.95. Such versions are affected by multiple vulnerabilities : - A failure to handle certain malformed 'RAR' archive files could make it possible for certain archive files to evade detection from the scan...

TCP SYN Port Scanner

Enumerate open TCP services using a raw SYN scan. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'TCP SYN Port Scanner', 'Description' = %q Enumerate open TCP services using a raw SYN scan. ,...

Vulnerability scanning tools nikto use of experience-vulnerability warning-the black bar safety net

http://www.cirt.net/ official website site http://www.feelids.com/ Author:swap A simple scan of the target basic WEB basic preparation Information, Server, PHP parser and other version information perl nkito.pl –h 192.168.0.1 Multi-port scanning Perl nikto.pl –h 192.168.0.1 –p 8 0, the 8 8, a 4 4...

PostgreSQL Error Message Conversion Remote DoS

Binary data 4957.prm...

Is your Java up to date?

For a long time, the experience of patching Sun’s Java software has been less than pleasant. The updates were huge and time consuming, the patching instructions were a mess and, even worse, Sun never removed older, vulnerable versions from the patched machine. Now it appears that things have been...

SMB Registry : Stopping the Registry Service after the scan failed

To perform a full credentialed scan, Nessus needs the ability to connect to the remote registry service RemoteRegistry. While Nessus successfully started the registry service, it could not stop it after the scan. You might want to disable it manually. C Tenable Network Security, Inc...

kernel: libertas: fix buffer overrun

Buffer overflow in the lbsprocessbss function in drivers/net/wireless/libertas/scan.c in the libertas subsystem in the Linux kernel before 2.6.27.5 allows remote attackers to have an unknown impact via an "invalid beacon/probe response."...

CA Antivirus Engine Multiple Scan Evasion

The Computer Associates CA antivirus scan engine installed on the remote host is affected by multiple scan evasion vulnerabilities due to a failure to handle certain malformed archive files. An attacker can exploit this, via crafted archive files, to evade detection by the scan engine. C Tenable...

Errata: [TZO-2009-1] Avira Antivir - RAR - Division by Zero &amp; Null Pointer Dereference

Errata : Products listed but not affected : AVIRA WebProtector for KEN! - Reason: Does not use the Scan Engine Avira AntiVir Mobile - Reason: Does not use the same AV Engine Avira requested the following products to be removed from the list, for the reason that they are license models and not...

Google Chrome 1.0.154.36 - FTP Client PASV Port Scan Information Disclosure

Google Chrome 1.0.154.36 - FTP Client PASV Port Scan Information Disclosure source: https://www.securityfocus.com/bid/33112/info Google Chrome is prone to an information-disclosure vulnerability because it fails to adequately validate server-issued instructions while in PASV passive mode. Attacke...