Microsoft Internet Explorer Multiple Vulnerabilities (KB4047206)

This host is missing a critical security update according to Microsoft security updates KB4047206. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

WMI Antivirus Status - Windows

Tests WMI AntiVirus Status. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.96011";...

OTRS 5.x <= 5.0.24 and 6.x <= 6.0.1 RCE Vulnerability

OTRS is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:otrs:otrs"; if...

OpenSSH Security Bypass Vulnerability

OpenSSH is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:openbsd:openssh";...

Dragan Mitic Apoll 'admin/index.php' SQL Injection Vulnerability

Dragan Mitic Apoll is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

Basit CMS 1.0 XSS and SQLi Vulnerabilities - Active Check

Basit CMS is prone to a cross-site scripting XSS and a SQL injection SQLi vulnerability SPDX-FileCopyrightText: 2003 k-otik.com Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if...

Ubuntu: Security Advisory (USN-6949-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

HP Printers Multiple Vulnerabilities (HPSBPI03630)

A maliciously crafted print file might cause certain HP Inkjet printers to assert. Under certain circumstances, the printer produces a core dump to a local device. Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by...

Docker < 18.09.2 runc Command Execution Vulnerability

Docker is prone to a command execution vulnerability. Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Microsoft .NET Framework 3.5 for Windows 8.1 and Server 2012 R2 RCE Vulnerability (KB4457045)

This host is missing a critical security update according to Microsoft KB4457045. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

phpMyAdmin End of Life (EOL) Detection - Windows

The phpMyAdmin version on the remote host has reached the End of Life EOL and should not be used anymore. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

Microsoft Internet Information Services Buffer Overflow Vulnerability

Microsoft Internet Information Services is prone to a buffer overflow vulnerability because it fails to adequately bounds-check user-supplied data before copying it to an insufficiently sized memory buffer. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a...

OpenSSH Multiple Vulnerabilities

OpenSSH is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:openbsd:openssh"; ifdescription...

Rockwell Automation FactoryTalk Batch View HMI Controls Detection (Windows SMB Login)

Detects the installed version of Rockwell Automation FactoryTalk Batch View HMI Controls for Windows. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

Microsoft Visual Studio Multiple Information Disclosure Vulnerabilities (KB4476698, KB4476755)

This host is missing an important security update according to Microsoft Security Update January-2019. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

Interlogix TruVision Detection

Detection of Interlogix TruVision. The script sends a connection request to the server and attempts to detect the web interface for TruVision. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

Weak Encryption Algorithm(s) Supported (SSH)

The remote SSH server is configured to allow / support weak encryption algorithms. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

Oracle WebLogic Server Detection (HTTP)

HTTP based detection of Oracle WebLogic Server. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Dragan Mitic Apoll 'admin/lost-pass.php' SQL Injection Vulnerability

Dragan Mitic Apoll is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

XOOPS viewtopic.php Cross Site Scripting Vulnerability

The remote web server contains a PHP script that is prone to cross- site scripting attacks. SPDX-FileCopyrightText: 2004 David Maciejak Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only C...

HTTP login page

This script logs onto a web server through a login page and stores the authentication / session cookie. OpenVAS Vulnerability Test $Id: httplogin.nasl 8023 2017-12-07 08:36:26Z teissa $ Description: HTTP login page Authors: Michel Arboi Copyright: Copyright C 2002 Michel Arboi This program is fre...

Microsoft Windows Multiple Vulnerabilities (KB5041773)

This host is missing an important security update according to Microsoft KB5041773 SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

Riello NetMan 204 Default Credentials (SSH)

The remote Riello NetMan 204 network card is using known default credentials for the SSH login. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Mort Bay Jetty 6.0.0 - 7.0.0 Multiple Vulnerabilities - Active Check

Mort Bay Jetty is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:eclipse:jetty"; ifdescriptio...

Hikvision IP Camera RCE Vulnerability (HSRC-202109-01) - Active Check

Multiple Hikvision IP camera devices are prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CP...

Microsoft .NET Framework Multiple Vulnerabilities (KB4483452)

This host is missing an important security update according to Microsoft KB4483452 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This...

Microsoft Windows: System Cryptography: Force strong key protection

This test checks the setting for policy OpenVAS Vulnerability Test $Id: winscstrongkeyprotect.nasl 11344 2018-09-12 06:57:52Z emoss $ Check value for System cryptography: Force strong key protection for user keys stored on the computer Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone...

Apache HTTP Server End of Life (EOL) Detection - Linux

The Apache HTTP Server version on the remote host has reached the End of Life EOL and should not be used anymore. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Sun xVM VirtualBox < 2.0.6 Insecure Temporary Files Vulnerability - Windows

Sun xVM VirtualBox is prone to an SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.900407";...

Debian: Security Advisory (DLA-1843-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Microsoft .NET Framework Security Feature Bypass And DoS Vulnerabilities (KB4095876)

This host is missing an important security update according to Microsoft KB4095876 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

Debian: Security Advisory (DSA-4187-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Microsoft Windows Multiple Vulnerabilities (KB4088876)

This host is missing a critical security update according to Microsoft KB4088876 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Apache HTTP Server End of Life (EOL) Detection - Windows

The Apache HTTP Server version on the remote host has reached the End of Life EOL and should not be used anymore. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Cisco ASA Multiple OpenSSL Vulnerabilities (cisco-sa-20150612-openssl)

Cisco ASA is prone to multiple vulnerabilities in the OpenSSL library. Copyright C 2015 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

Juniper Networks Junos OS OpenSSH Restriction Bypass Vulnerability

Junos OS is prone to a restriction bypass vulnerability in OpenSSH. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:juniper:junos...

Nmap NSE 6.01: socks-open-proxy

Checks if an open socks proxy is running on the target. The script attempts to connect to a proxy server and send socks4 and socks5 payloads. It is considered an open proxy if the script receives a Request Granted response from the target port. The payloads try to open a connection to...

WebcamXP <= 5.5.1.2, Webcam7 <= 0.9.9.32 Directory Traversal Vulnerability - Active Check

WebcamXP and Webcam7 are prone to a directory traversal vulnerability because they fail to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

'/;/WEB-INF/' Information Disclosure Vulnerability (HTTP)

Various application or web servers / products are prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

Intel Active Management Technology Multiple Vulnerabilities (INTEL-SA-00141)

Multiple vulnerabilities in Intel Active Management Technology AMT in Intel CSME firmware may allow arbitrary code execution, a partial denial of service DoS or information disclosure. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, a...

Microsoft Windows: Join Microsoft MAPS

This policy setting allows you to join Microsoft MAPS. Microsoft MAPS is the online community that helps you choose how to respond to potential threats. The community also helps stop the spread of new malicious software infections. You can choose to send basic or additional information about...

Symantec pcAnywhere 'awhost32' RCE Vulnerability

Symantec pcAnywhere is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Perl Safe Module 'reval()' and 'rdo()' Restriction-Bypass Vulnerabilities

The Perl Safe module is prone to multiple restriction-bypass vulnerabilities. Successful exploits could allow an attacker to execute arbitrary Perl code outside of the restricted root. Versions prior to Safe 2.25 are vulnerable. OpenVAS Vulnerability Test $Id: gbperlsafe40302.nasl 5323 2017-02-17...

Acritum Femitter Server 1.03 Multiple Vulnerabilities

Acritum Femitter Server is prone to multiple remote vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

jQuery < 1.9.0 XSS Vulnerability

jQuery is prone to a cross-site scripting XSS vulnerability via the load method. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Samsung AllShare Server Detection (HTTP)

Checks whether Samsung AllShare Server is present on the target system and if so, tries to figure out the installed version. Copyright C 2020 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it under the terms o...

WordPress Gwolle Guestbook Plugin < 1.5.4 RFI Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description scriptoid"1.3.6.1.4.1.25623.1.0.112042";...

Dropbear < 2013.59 Multiple Vulnerabilities

Dropbear is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2014 SCHUTZWERK GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later CPE =...

WebcamXP and Webcam7 Directory Traversal Vulnerability

WebcamXP and Webcam7 are prone to a directory-traversal vulnerability because they fail to sufficiently sanitize user-supplied input. Exploiting the issue can allow an attacker to obtain sensitive information that may aid in further attacks. WebcamXP 5.5.1.2 and Webcam7 0.9.9.32 are vulnerable;...

Nmap NSE: X11 Access

This script attempts to check if you are allowed to connect to the X server. This is a wrapper on the Nmap Security Scanner's http://nmap.org x11-access.nse. OpenVAS Vulnerability Test $Id: gbnmapx11access.nasl 7006 2017-08-25 11:51:20Z teissa $ Wrapper for Nmap X11 Access NSE script. Authors:...