Ruby on Rails 'CVE-2019-5418' LFI (Local File Inclusion) Vulnerability

The web application on the remote host is prone to a LFI Local File Inclusion vulnerability if the hosting system is running an outdated version of Ruby on Rails. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by...

SSL/TLS: Deprecated SSLv2 and SSLv3 Protocol Detection

It was possible to detect the usage of the deprecated SSLv2 and/or SSLv3 protocol on this system. SPDX-FileCopyrightText: 2015 SCHUTZWERK GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

Dahua Devices Authentication Bypass Vulnerability

The remote Dahua device is prone to an authentication-bypass vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Apache Axis2 Default Credentials (HTTP) - Active Check

The remote Apache Axis2 web interface is using known default credentials. SPDX-FileCopyrightText: 2015 SCHUTZWERK GmbH SPDX-FileCopyrightText: Reworked detection code since 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective...

Drupal Core Critical RCE Vulnerability (SA-CORE-2018-002) - Active Check

Drupal is prone to a critical remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

OpenSSH < 7.8 User Enumeration Vulnerability - Linux

OpenSSH is prone to a user enumeration vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:openbsd:openssh";...

Icecast < 2.4.4 Buffer Overflow Vulnerability

A buffer overflow was discovered in the URL-authentication backend of the Icecast. If the backend is enabled, then any malicious HTTP client can send a request for that specific resource including a crafted header, leading to denial of service DoS and potentially remote code execution RCE...

Read all Windows Policy Security Settings (Windows)

The script read all Windows Policy Security Settings. OpenVAS Vulnerability Test $Id: GSHBWMIPolSecSet.nasl 7061 2017-09-05 11:50:40Z teissa $ Read all Windows Policy Security Settings Windows Authors: Thomas Rotter Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net Set...

ApPHP MicroBlog RCE Vulnerability

ApPHP MicroBlog is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

phpinfo() Output Reporting (HTTP)

Reporting of files containing the output of the phpinfo PHP function previously detected via HTTP. SPDX-FileCopyrightText: 2003 Randy Matz SPDX-FileCopyrightText: New / rewritten code and metadata since 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are...

OS Detection Consolidation and Reporting

This script consolidates the OS information detected by several VTs and tries to find the best matching OS. Furthermore it reports all previously collected information leading to this best matching OS. It also reports possible additional information which might help to improve the OS detection. I...

SSL/TLS: Report Weak Cipher Suites

This routine reports all weak SSL/TLS cipher suites accepted by a service. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OpenSSH < 7.6 'sftp-server' Security Bypass Vulnerability - Linux

OpenSSH is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:openbsd:openssh";...

GW Security IP Camera Default Credentials (HTTP)

The remote installation of GW Security Copyright C 2019 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either...

phpList < 3.5.1 Authentication Bypass Vulnerability

phpList is prone to an authentication bypass vulnerability. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:phplist:phplist"; if...

Debian: Security Advisory (DLA-2184-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

FCKeditor Connectors Arbitrary File Upload Vulnerability

Web applications providing wrong configured FCKeditor connectors might be prone to an arbitrary-file-upload vulnerability. Copyright C 2015 SCHUTZWERK GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

OpenSSH < 7.6 'sftp-server' Security Bypass Vulnerability - Windows

OpenSSH is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:openbsd:openssh";...

Possible Backdoor: Ingreslock

A backdoor is installed on the remote host. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mikrotik RouterOS 'Winbox Service' Information Disclosure Vulnerability (Apr 2018) - Active Check

Mikrotik RouterOS is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Generic HTTP Directory Traversal / File Inclusion (Web Application URL Parameter) - Active Check

Generic check for HTTP directory traversal / file inclusion vulnerabilities within URL parameters of the remote web application. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Operating System (OS) Detection (HTTP)

HTTP based OS detection from the HTTP/PHP banner or default test pages. SPDX-FileCopyrightText: 2015 SCHUTZWERK GmbH SPDX-FileCopyrightText: Reworked, improved and extended detection code and pattern since 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and...

Microsoft Windows SMB/NETBIOS NULL Session Authentication Bypass Vulnerability

The host is running SMB/NETBIOS and prone to authentication bypass Vulnerability OpenVAS Vulnerability Test $Id: gbmswindowssmbsharepasswdnullsecbypassvuln.nasl 7550 2017-10-24 12:17:52Z cfischer $ Microsoft Windows SMB/NETBIOS NULL Session Authentication Bypass Vulnerability Authors: Antu Sanadi...

Webmin <= 1.941 RCE Vulnerability

Webmin is prone to an authenticated remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

PRTG Network Monitor <=18.3.43.2323 RCE Vulnerability

PRTG Network Monitor is prone to a remote command execution RCE vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...

SSH Brute Force Logins With Default Credentials Reporting

It was possible to login into the remote SSH server using default credentials. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SMB Brute Force Logins With Default Credentials

A number of known default credentials are tried for the login via the SMB protocol. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescripti...

Microsoft Windows: Network access: Restrict clients allowed to make remote calls to SAM

This test checks the setting for policy OpenVAS Vulnerability Test $Id: winnaclientsallowedremotesam.nasl 11098 2018-08-23 14:32:47Z emoss $ Check value for Network access: Restrict clients allowed to make remote calls to SAM Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks...

Apache Tomcat AJP RCE Vulnerability (Ghostcat) - Active Check

Apache Tomcat is prone to a remote code execution RCE vulnerability in the AJP connector dubbed SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

OTRS FAQ Package Multiple SQLi Vulnerabilities

The FAQ package of OTRS is prone to multiple SQL injection SQLi vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Siemens SIMATIC S7 Device Detection (COTP)

COTP Connection-Oriented Transport Protocol based detection of Siemens SIMATIC S7 devices. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Oracle E-Business Suite 'IESFOOTPRINT' SQLi Vulnerability - Active Check

Oracle E-Business Suite is prone to an SQL injection SQLi vulnerability. Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is fre...

GNU Bash Environment Variable Handling RCE Vulnerability (Shellshock, HTTP, CVE-2014-6271/CVE-2014-6278) - Active Check

GNU Bash is prone to a remote command execution RCE vulnerability dubbed SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Format string on HTTP method name

The remote web server seems to be vulnerable to a format string attack on the method name. An attacker might use this flaw to make it crash or even execute arbitrary code on this host. OpenVAS Vulnerability Test $Id: httpmethodformatstring.nasl 8023 2017-12-07 08:36:26Z teissa $ Description: Form...

Report default community names of the SNMP Agent

Simple Network Management Protocol SNMP is a protocol which can be used by administrators to remotely manage a computer or network device. There are typically 2 modes of remote SNMP monitoring. These modes are roughly SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be...

RealVNC 4.1.3 'ClientCutText' Message Remote Denial of Service Vulnerability

RealVNC Viewer is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to crash the affected application, denying service to legitimate users. RealVNC 4.1.3 is vulnerable; other versions may also be affected. OpenVAS Vulnerability Test $Id: gbRealVNC39895.nasl 537...

Red Hat JBoss Multiple Products Detection (HTTP)

HTTP based detection of multiple Red Hat JBoss products. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

WikkaWiki Multiple Security Vulnerabilities

WikkaWiki is prone to multiple security vulnerabilities, including: 1. An SQL injection vulnerability. 2. An arbitrary file upload vulnerability. 3. An arbitrary file deletion vulnerability. 4. An arbitrary file download vulnerability. 5. A PHP code injection vulnerability. Attackers can exploit...

FreeBSD Ports: dokuwiki

The remote host is missing an update to the system as announced in the referenced advisory. VID af8dba15-f4cc-11da-87a1-000c6ec775d9 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

Tiki Wiki CMS Groupware End of Life (EOL) Detection

The Tiki Wiki CMS Groupware version on the remote host has reached the End of Life EOL and should not be used anymore. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Open Realty 'select_users_template' Parameter Local File Include Vulnerability

Open Realty is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information or to execute arbitrary local scripts in the context of the webserver process. This may allo...

CentOS Update for libssh2 CESA-2019:0679 centos7

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Dropbear < 0.48 Multiple Vulnerabilities

Dropbear is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2014 SCHUTZWERK GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later CPE =...

WordPress 'load-scripts.php' DoS Vulnerability - Linux

WordPress is prone to a denial of service DoS vulnerability. Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software;...

Microsoft Windows: Allow Input Personalization

Microsoft provides both a device-based speech recognition feature and a cloud-based online speech recognition service in regions where Cortana is available. Turning on the Online speech recognition setting lets you use Microsoft cloud-based speech recognition in Cortana, the Mixed Reality Portal,...

Lantronix Devices Detection (HTTP)

HTTP based detection of Lantronix Devices. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.108304...

Roundcube Webmail < 1.1.7, 1.2.x < 1.2.3 RCE Vulnerability

Roundcube Webmail is prone to a remote code execution RCE vulnerability. Copyright C 2016 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is fre...

TCP Timestamps Information Disclosure

The remote host implements TCP timestamps and therefore allows to compute the uptime. SPDX-FileCopyrightText: 2008 Michel Arboi Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Microsoft IIS Default Welcome Page Information Disclosure Vulnerability

Microsoft IIS Webserver is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

TCP/IP Predictable TCP Initial Sequence Number Vulnerability

The remote host has predictable TCP sequence numbers. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...