SSH Version Corruption

This module sends a series of SSH requests with a corrupted version string This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SSH Version Corruption', 'Description' = %q This module sends a series...

GD Graphics Library Detection (Linux/Unix SSH Login)

This script detects the installed version of GD Graphics Library. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Default Password (infoblox) for 'admin' Account

The account 'admin' on the remote host has the password 'infoblox'. An attacker may leverage this issue to gain total control of the affected system. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. account = "admin"; password = "infoblox"; include'deprecatednasllevel.inc'; include'compat.inc...

GuardianOS Privilege Escalation

Device: Snap Server 410 OS: GuardianOS 5.1.041 Description: When logged in to CLI via ssh as admin uid=1 you can escalate your privileges to uid 0 and get /bin/sh. In order to achieve this open 'less' which is available as default for viewing files ie. less /tmp/top.log and type in '!/bin/sh'. Th...

Solaris 10 (sparc) : 141030-10

SunOS 5.10: passwd patch. Date this patch was last updated by Sun : Mar/24/10 %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network Security, Inc. if ! definedfunc"bnrandom"...

Overland Guardian OS 5.1.041 privilege escalation

No description provided by source. Device: Snap Server 410 OS: GuardianOS 5.1.041 Description: When logged in to CLI via ssh as admin uid=1 you can escalate your privileges to uid 0 and get /bin/sh. In order to achieve this open 'less' which is available as default for viewing files ie. less...

Solaris 10 (x86) : 141525-10

SunOS 5.10x86: ssh and openssl patch. Date this patch was last updated by Sun : Jun/18/10 %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network Security, Inc. if !...

Overland Guardian OS 5.1.041 - Local Privilege Escalation

Device: Snap Server 410 OS: GuardianOS 5.1.041 Description: When logged in to CLI via ssh as admin uid=1 you can escalate your privileges to uid 0 and get /bin/sh. In order to achieve this open 'less' which is available as default for viewing files ie. less /tmp/top.log and type in '!/bin/sh'. Th...

Hardcoded credentials

RioRey RIOS 4.6.6 and 4.7.0 uses an undocumented, hard-coded username dbadmin and password sq!us3r for an SSH tunnel, which allows remote attackers to gain privileges via port 8022...

Solaris 10 (x86) : 141511-07

SunOS 5.10x86: ehci, ohci, uhci patch. Date this patch was last updated by Sun : Jun/29/10 %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network Security, Inc. if !...

Solaris 10 (sparc) : 141026-14

SunOS 5.10: print patch. Date this patch was last updated by Sun : Jul/09/10 %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network Security, Inc. if ! definedfunc"bnrandom"...

CVS Argumentx Command Double Free (CVE-2004-0416)

Concurrent Versions System CVS is an open-source network-transparent version control system. CVS itself does not listen for, or accept network connections. To implement remote repository access, it can be installed as an inetd service, or invoked with the rsh/ssh command. Data between the server...

Solaris Update for arp, dlcosmk, ip, and ipgpc 114344-41

Check for the Version of arp, dlcosmk, ip, and ipgpc OpenVAS Vulnerability Test Solaris Update for arp, dlcosmk, ip, and ipgpc 114344-41 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribut...

SLES10: Security update for curl

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: curl curl-devel More details may also be found by searching for the SuSE Enterprise Server 10 patch database located at...

SLES10: Security update for clamav

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: clamav More details may also be found by searching for the SuSE Enterprise Server 10 patch database linked in the references. SPDX-FileCopyrightText: 2009...

SLES10: Security update for X.org

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: xorg-x11-Xnest xorg-x11-Xvfb xorg-x11-Xvnc xorg-x11-server More details may also be found by searching for the SuSE Enterprise Server 10 patch database locat...

Solaris Update for /usr/bin/ssh 114357-18

Check for the Version of /usr/bin/ssh OpenVAS Vulnerability Test Solaris Update for /usr/bin/ssh 114357-18 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...

SLES9: Security update for GNU Emacs

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: emacs emacs-nox emacs-el emacs-x11 emacs-info For more information, please visit the referenced security advisories. More details may also be found by...

SLES9: Security update for OpenLDAP

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: openldap2-back-meta openldap2 openldap2-back-perl openldap2-client openldap2-devel openldap2-back-ldap openldap2-back-monitor More details may also be found ...

SLES9: Security update for xntp

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: xntp More details may also be found by searching for keyword 5020239 within the SuSE Enterprise Server 9 patch database linked in the references...