AIX 530009 : U829369

The remote host is missing AIX PTF U829369 which is related to the security of the package bos.diag.util You should install this PTF for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc';...

AIX 530009 : U825264

The remote host is missing AIX PTF U825264 which is related to the security of the package bos.sysmgt.nim.master You should install this PTF for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc';...

sslh Detection

The remote host appears to be running an sslh daemon. sslh is a multiplexing service that can accept SSH or SSL connections on the same port, such as 443 from inside a corporate firewall. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include"compat.inc"; i...

CentOS Security Advisory CESA-2009:1470 (openssh)

The remote host is missing updates to openssh announced in advisory CESA-2009:1470. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

CVE-2009-2818

Adaptive Firewall in Apple Mac OS X before 10.6.2 does not properly handle invalid usernames in SSH login attempts, which makes it easier for remote attackers to obtain login access via a brute-force attack aka dictionary attack...

Design/Logic Flaw

Adaptive Firewall in Apple Mac OS X before 10.6.2 does not properly handle invalid usernames in SSH login attempts, which makes it easier for remote attackers to obtain login access via a brute-force attack aka dictionary attack...

CVE-2009-2829

The CVE-2009-2829 issue affects Apple Mac OS X 10.5.8, where Event Monitor mishandles crafted authentication data sent to the SSH daemon, enabling log-injection that can lead to denial of service when logs are processed by other services. This is tied to a vulnerability in processing XML log docu...

CVE-2009-2818

CVE-2009-2818 affects Apple Mac OS X before 10.6.2. The Adaptive Firewall may mishandle invalid usernames during SSH login attempts, making remote login via brute-force/dictionary attacks more feasible. The vulnerability is part of the set of issues patched by Apple’s 10.6.2 security update, whic...

HTML Parser Detection (Linux/Unix SSH Login)

SSH login-based detection of HTML Parser. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.801038"...

Solaris 8 (x86) : 140844-01

SunOS 5.8x86: /usr/sbin/ntpq patch. Date this patch was last updated by Sun : Nov/03/09 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network Security, Inc. if !...

SquidGuard Version Detection

This script detects the installed version of SquidGuard and sets the result in KB. OpenVAS Vulnerability Test $Id: gbsquidguarddetect.nasl 7823 2017-11-20 08:54:04Z cfischer $ squidGuard Version Detection Authors: Nikita MR Copyright: Copyright c 2009 Greenbone Networks GmbH,...

Default Password (alpine) for 'root' Account

The account 'root' on the remote host has the password 'alpine'. An attacker may leverage this issue to gain full access to the affected system. Note that iPhones are known to use these credentials by default and allow access via SSH when jailbroken. %NASLMINLEVEL 70300 C Tenable Network Security...

Default Password (alpine) for 'mobile' Account

The account 'mobile' on the remote host has the password 'alpine'. An attacker may leverage this issue to gain access to the affected system. Note that iPhones are known to use these credentials by default and allow access via SSH when jailbroken. %NASLMINLEVEL 70300 C Tenable Network Security,...

SquidGuard Version Detection

This script detects the installed version of SquidGuard. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Snort Detection (Linux/Unix SSH Login)

This script detects the installed version of Snort. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SystemTap Version Detection

This script detects the installed version of SystemTap and sets the result in KB. OpenVAS Vulnerability Test $Id: secpodsystemtapdetect.nasl 7823 2017-11-20 08:54:04Z cfischer $ SystemTap Version Detection Authors: Antu Sanadi Copyright: Copyright c 2009 SecPod, http://www.secpod.com This program...

SystemTap Detection (SSH)

This script detects the installed version of SystemTap. Copyright C 2009 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you c...

Unencrypted Telnet Server

The remote host is running a Telnet server over an unencrypted channel. Using Telnet over an unencrypted channel is not recommended as logins, passwords, and commands are transferred in cleartext. This allows a remote, man-in-the-middle attacker to eavesdrop on a Telnet session to obtain...

SuSE Security Advisory SUSE-SA:2009:049 (acroread, acroread_ja)

The remote host is missing updates announced in advisory SUSE-SA:2009:049. OpenVAS Vulnerability Test $Id: susesa2009049.nasl 6668 2017-07-11 13:34:29Z cfischer $ Description: Auto-generated from advisory SUSE-SA:2009:049 acroread, acroreadja Authors: Thomas Reinke Copyright: Copyright c 2009...

SSH Key Exchange Init Corruption

This module sends a series of SSH requests with a corrupted initial key exchange payload. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SSH Key Exchange Init Corruption', 'Description' = %q...