Revisión completa de los escáneres de seguridad

Si desea más información sobre evaluaciones de seguridad, visite, por favor, nuestras páginas de pruebas de penetración, evaluación de vulnerabilidades, cumplimiento de pautas de seguridad y control de redes internas.

 

Accounts

Account Lockout Duration
Account Lockout Threshold
Account password reverse of account
Account password same as account
Account Reset
Account with no password
Anonymous Policy Password - NT4
Cached Logon Credentials
Cached Logons Enabled
Cannot Change Password
Default Administrator Account
Disable Dial-In Capabilities
Enumerate currently logged-in users via Finger
Last Username
Max Password Age
Min Password Age
Min Password Length
Novell Groupwise Servlet Gateway Default Account
OpenSSH X11 Forwarding Symbolic Link Cookie Deletion
Password Does Not Expire
Password History
Service Account Passwords - NT4
Still Image Service Vulnerability
User Never Logged On

Anti-Virus

McAfee ePolicy Orchestrator detected
McAfee GroupShield for Exchange detected
McAfee NetShield for NT detected
McAfee VirusScan Enterprise detected
Norton AntiVirus Corporate Edition (managed service) detected
Norton AntiVirus Corporate Edition detected
Norton Internet Security detected
Symantec AntiVirus for HTTP Gateways detected
Symantec AntiVirus for SMTP Gateways detected
Symantec Mail Security for Exchange detected
Symantec Web Security detected
Trend Micro InterScan eManager detected
Trend Micro InterScan Message Security Suite detected
Trend Micro InterScan VirusWall detected
Trend Micro OfficeScan Corporate Edition Client detected
Trend Micro OfficeScan Corporate Edition Server detected
Trend Micro PortalProtect detected
Trend Micro ScanMail for Exchange detected
Trend Micro ServerProtect for Linux detected
Trend Micro ServerProtect for NT detected

CGI Scripts

Abe Timmerman zml.cgi File Disclosure
Adcycle password disclosure
Agora.CGI Cross-Site Scripting Vulnerability
Allaire JRun 3.0 information disclosure
AtomicBoard index.php Directory Traversal
BizDB bizdb1-search.cgi remote command execution
Bonsai command execution
BOOZT 0.9.8 CGI buffer overflow
Bugzilla 2.10 information disclosure
Bugzilla 2.10 remote command execution
ByteHoard 0.7 Directory Traversal
Cacheflow CacheOS web admin vulnerability
CCBill whereami.cgi Remote Command Execution
CGI - /iisadmpwd/aexp2.htr
CGI - /iisadmpwd/aexp2b.htr
CGI - /iisadmpwd/aexp3.htr
CGI - /iisadmpwd/aexp4.htr
CGI - A1Stats multiple vulnerabilities
CGI - ad.cgi - Tammies Husband
CGI - Aglimpse
CGI - AnyForm2
CGI - Args.bat
CGI - Aspseek multiple buffer overflows
CGI - BadBlue Web Ext.dll Vulnerabilities
CGI - bbs_forum.cgi - eXtropia
CGI - Bdir.htr
CGI - bsguest.cgi - Brian Stanback
CGI - bslist.cgi - Brian Stanback
CGI - Caldera OpenLinux 2.3 rpm_query
CGI - Campas
CGI - Carbo.dll
CGI - Cold Fusion exprcalc vulnerability
CGI - ColdFusion CFCACHE vulnerability
CGI - ColdFusion Default application evaluation vulnerability
CGI - ColdFusion Default application file checking Vulnerabilty
CGI - ColdFusion Default application Viewexample vulnerability
CGI - ColdFusion DoS
CGI - ColdFusion Example application
CGI - ColdFusion example application parks
CGI - ColdFusion Example application 2
CGI - ColdFusion Example application beans
CGI - ColdFusion Example application content add
CGI - ColdFusion Example application file view
CGI - ColdFusion Example application Frames
CGI - ColdFusion Example application getfile
CGI - ColdFusion Exression Eval Vulnerability
CGI - ColdFusion gettempdirectory.cfm Vulnerability
CGI - ColdFusion Web Control issue
CGI - Count
CGI - Cyberscheduler buffer overflow
CGI - dbmlparser file view vulnerability
CGI - DCForum
CGI - ExAir advsearch DoS
CGI - ExAir query DoS
CGI - ExAir search DoS
CGI - Excite Search
CGI - eXtropia bbs_forum.cgi dir traversal
CGI - Extropia Guestbook vuln
CGI - EZshopper Loadpage.cgi Directory Listing
CGI - Faxsurvey
CGI - Finger
CGI - FormMail remote command execution
CGI - fpcount.exe
CGI - gbook.cgi
CGI - getdrvrs.exe
CGI - Handler
CGI - HIS Auktion 1.62 Directory Traversal
CGI - HtDig file inclusion
CGI - Htmlscript
CGI - Info2www remote command execution
CGI - JJ
CGI - MAILNEWS 1.3 remote cmd execution
CGI - main.cgi - Technote
CGI - Man.sh file viewing and command execution vulnerability
CGI - man2html remote DoS
CGI - mlog.html file read vuln
CGI - mmstdod.cgi - Endymion MailMan
CGI - Moreover Cached_Feed.cgi file disclosure
CGI - Multiple Vendor whois.cgi Metacharacter Vulnerability
CGI - mylog.html file read vuln
CGI - newsdesk.cgi - ibrow
CGI - nph-test-cgi
CGI - Pfdispaly
CGI - Phf
CGI - Php
CGI - print.cgi - Technote
CGI - register.cgi - Ikonboard
CGI - Search97.vts
CGI - setpasswd.cgi - TrendMicro
CGI - simplestguest.cgi - Tammies Husband
CGI - simplestmail.cgi - Tammies Husband
CGI - Test-Cgi
CGI - Textcounter
CGI - Uploader.exe
CGI - View-source
CGI - viewsrc.cgi v2.0 view files
CGI - w3-msql multiple overflow vuln
CGI - Webdist
CGI - webdriver - Informix
CGI - Webgais
CGI - Websendmail
CGI - wrap file view vulnerability
CGI - WWWBoard Arbitrary Message Overwrite
CGI - WWWBoard Password Disclosure
CGI - Www-sql
CGI Forum File disclosure
CGIScript.net csPassword.cgi password exposure
ChangshinSoft EZTrans Server download.php Directory Traversal
CodeBrws.asp Source Code Disclosure
ColdFusion Adminstrator Login DoS
Commerce Server Vuln
CommerceSQL Shopping Cart Directory Traversal
csMailto Remote Execution Vulnerability
DansGuardian Webmin Module edit.cgi Directory Traversal
Debian Linux httpd Vulnerability
EasyBoard 2000 Remote Buffer Overflow
EZMall 2000 - Order.log
Ezshopper2 loadpage.cgi directory view vulnerability
Ezshopper3 loadpage.cgi directory view vulnerability
Faqmanager.cgi file read vulnerability
FoxWeb PATH_INFO Buffer Overflow
Front page Administration
FrontPage 98 Link View Component buffer overflow
Frontpage Extenions VS RAD buffer overflow
Greymatter 1.21c admin password exposure
gtcatalog administrative password disclosure
Hosting Controller DSNManager Directory Traversal Vulnerability
Hosting Controller Import Root Directory Command Execution
HP AdvanceStack Authentication Bypass
HP Toptools denial-of-service vulnerability
htgrep arbitrary file reading vulnerability
htsearch CGI File Read Vulnerability
Icewarp insecure user accounting
IIS Admin ISM DLL Vulnerability
IIS Sample application - adctest
IIS sample application - ctguestb
IIS sample application - details
IIS Sample application - JET prob
IIS Sample application - queryhit
IIS Web adminsitration hole
InstaBoard 1.3 SQL injection vulnerability
InstantServers MiniPortal Multiple Vulnerabilities
iWeb Hyperseek 2000
JBrowser jbrowser.php Directory Traversal
Kebi Academy 2001 Web Solution Directory Traversal Vulnerability
Last Lines CGI Remote Command Execution
Last Lines CGI Script Directory Traversal
Macromedia JRun Host Header Field Buffer Overflow Vulnerability
Macromedia JRun Source Disclosure Vulnerabilities
MakeBid Auction Deluxe cross-agent scripting
Martin Hamilton ROADS File Disclosure
Monkey HTTP Daemon test2.cgi cross-site scripting
Multiple Web BBS Vulns - cgibin
Multiple Web BBS Vulns - scripts
Netscape ES/iPlanet ?wp-html-rend denial of service DoS
NEWDSN Vulnerability
NT IIS MDAC RDS Vulnerability
OmniHTTPd imagemap.exe buffer overflow
OmniHTTPd redir.exe cross-site scripting
OmniHTTPd statsconfig.pl aribtrary file corruption
OmniHTTPd statsconfig.pl command execution
OmniHTTPd test.shtml/.php cross-site scripting
OmniHTTPd visadmin.exe denial-of-service
OpenBB board.php Cross-Site Scripting
OpenBB multiple SQL injection vulnerabilities
ORA Website sample Buffer overflow vuln
ORA Website uploader attack
Oracle 9iAS PORTAL_DEMO ORG_CHART SQL Injection
Oracle XSQLServlet XSQLConfig.xml File
Oracle9iAS Globals.jsa access
paFileDB SQL injection vulnerability
PDG Shopping Cart - Config File
PDG Shopping Cart - Order.log
Perl Execute Vulnerability -cgibin
Perl Execute Vulnerability -scripts
PerlCal cal_make.pl Directory Traversal
pforum 1.14 CSS
Phorum 3.3.2 Remote Command Execution Vulnerability
PhotoPost PHP Pro showphoto.php SQL Injection
PHP Manpage Lookup Directory Traversal
PHP multipart/form-data Post Buffer Overflow
PhpGedView editconfig_gedcom.php Directory Traversal
phpMyAdmin 2.5.5-pl1 export.php Directory Traversal
phpMyShop SQL injection vulnerability
PHP-Nuke 4.4 modify banner url
PHPNuke Remote File Copy Vulnerability
phpWebFileManager v2.0.0 Directory Traversal
Pi3Web ISAPI sample buffer overflow vulnerability
PJ CGI Neo Review Directory Traversal
Popper_Mod Default Administrative Access Vulnerability
PY-Livredor guestbook cross-site scripting
Qualiteam X-Cart general.php Command Execution
QuikStore - Admin Password
QuikStore - Admin Password cgi
QuikStore Shopping Cart Directory Traversal
Sambar environ.pl Information Disclosure
Sambar Web Server batch CGI vulnerability
Sambar Web Server dumpenv.pl remote disclosure
Sambar Web Server search CGI directory listing
Savant Web Server cgitest.exe buffer overflow
SGI Infosrch.cgi vuln
Siteserver vuln- cpshost
Siteserver vuln- postinfo
Siteserver vuln- repost
SquirrelMail cross-site scripting - /mail/src
SquirrelMail cross-site scripting - /squirrelmail/src
SquirrelMail cross-site scripting - /src
SquirrelMail cross-site scripting - /webmail/src
Stronghold 3.0 Information Disclosure
Sun AnswerBook2 Gettransbitmap Buffer Overflow
SuSE Apache CGI Source Code Viewing
Sybex E-Trainer Directory Traversal
Tarantella Enterprise 3.11.903 Directory Listing
TEXIS Information Disclosure
Upload Lite arbitrary file upload and execution
uploader.php may allow scripts to be uploaded
ViewCode1
ViewCode2
ViewCode3
ViewCode4
ViewCode5
ViewCode6
Web Counter DoS
Web Shopper shopper.cgi Directory Traversal
WebCart - Config File
WebCart - Orders File
Webcart vulnerability
Webcom rguest file view vuln
Webcom wguest file view vuln
WEB-ERP database credentials disclosure
Webfroot Shoutbox expanded.php Directory Traversal
Webmin 0.91 Directory Traversal Vulnerability
WebStore - Order.log
WebStore web_store.cgi Directory Traversal
WebWho+ webwho.pl remote command execution
Wordit Logbook arbitrary command execution
XMB 1.6 CSS
YaBB Cross Site Scripting Vulnerability

CHAM

FTP Buffer Overflows
HTTP Buffer Overflows
POP Buffer Overflows
SMTP Buffer Overflows

Database

MDAC SQL ping response buffer overflow
Microsoft Data Access Components buffer overflow
MSSQL sa null password
Oracle 9i Application Server non-existent JSP Path Disclosure
Oracle 9i Default Configuration File Information Disclosure
Oracle 9IAS OracleJSP Source Code Disclosure
Oracle 9iAS PL/SQL Module Web Administration Access
Oracle 9iAS SOAP Default Configuration Disclosure
Oracle Application Server _info.java Source Disclosure
Oracle Application Server AggreSpy Sample Page
Oracle Application Server config.xml Information Disclosure
Oracle Application Server dms0 Information Disclosure
Oracle Application Server DMSdump Information Disclosure
Oracle Application Server info.jsp Sample Page
Oracle Application Server Java Runtime Details Disclosure
Oracle Application Server JDBCQuery.java Source Disclosure
Oracle Application Server JDBCQuery.jsp Sample Page
Oracle Application Server Module Pool Information Disclosure
Oracle Application Server newsstorydemo.html Sample Page
Oracle Application Server online orders Sample Page
Oracle Application Server sendmail.jsp Sample Page
Oracle Application Server Servlet Spy Information Disclosure
Oracle Application Server SQLJSelectInto.java Source Disclosure
Oracle Application Server SQLJSelectInto.sqljsp Disclosure
Oracle Application Server SQL-To-XML Sample Page
Oracle Application Server uridemo.html Sample Page
Oracle Application Server UseHtmlQueryBean.jsp Sample Page
Oracle Java Process Manager Information Disclosure
Oracle Reports Server Information Disclosure
SQL 2000 Agent jobs privilege escalation
SQL 2000 authentication buffer overflow
SQL 2000 bulk insert procedure buffer overflow
SQL 2000 cached administrator connection vulnerability
SQL 2000 DBCC multiple buffer overflows
SQL 2000 DBCC SourceDB buffer overflow
SQL 2000 extended stored procedure weak permissions
SQL 2000 improper registry key permissions
SQL 2000 malformed 0x08 packet denial-of-service
SQL 2000 multiple XP buffer overflows
SQL 2000 OLE DB provider name buffer overflow
SQL 2000 password encryption buffer overflow
SQL 2000 Resolution Service buffer overflows
SQL 2000 Resolution Service denial-of-service
SQL 2000 Resolution Service Overflows (Sapphire Worm)
SQL 2000 sp_MScopyscript command execution
SQL 2000 sp_MScopyscript SQL injection
SQL 2000 text formatting function buffer overflows
SQL 2000 xp_displayparamstmt buffer overflow
SQL 2000 xp_enumresultset buffer overflow
SQL 2000 xp_peekqueue buffer overflow
SQL 2000 xp_printstatements buffer overflow
SQL 2000 xp_proxiedmetadata buffer overflow
SQL 2000 xp_SetSQLSecurity buffer overflow
SQL 2000 xp_showcolv buffer overflow
SQL 2000 xp_updatecolvbm buffer overflow
SQL 7 Extended Stored Procedure Privilege Upgrade
SQL 7 Text Formatting Functions Contain Unchecked Buffers
SQL 7 Unchecked Buffer in MDAC Function
SQL Server 7 Extended Procedure Overflow
SQL Server 7 Remote Data Source Overflow
SQL Server Installation Process May Leave Passwords on System
SQL Server SQLXML Remote Overflow
SQL Server Text Formatting Functions Contain Unchecked Buffers
SQL Server Unchecked Buffer in MDAC Function

Dns Services

Bad Network Packet - NT4
BIND 4 nslookupComplain() Buffer Overflow
BIND 4 nslookupComplain() Format Bug
BIND 8 Internal Memory Disclosure Vulnerability
BIND 8 OPT DoS
BIND 8 SIG Expiry Time DoS
BIND 8 Transaction Signatures Buffer Overflow
BIND 8.2.1 Buffer overflow in via NXT records
BIND 8.2.1 fdmax Denial of Service
BIND 8.2.1 maxdname Denial of Service
BIND 8.2.1 NAPTR Denial of Service
BIND 8.2.1 SIG Denial of Service
BIND 8.2.1 so_linger Denial of Service
BIND 8.2.2-P5 Denial of Service Vulnerability
BIND 9 chain response vulnerability
BIND 9 resolver buffer overflow
BIND Cache Poisoning
BIND DNS Resolver Buffer Overflow
BIND iquery overflow
BIND Moving Domain DoS Vulnerability
BIND SIG Cached Resource Record Buffer Overflow
BIND SIGINT and SIGIOT symlink Vulnerability
DNS Cache Pollution Vulnerability Registry Fix Required
DNS DoS - NT4
DNS Server Enabled
Multiple Vendor DNS Cache corruption
NT - DNS Cache Pollution Vulnerability

DoS

BEA WebLogic DOS device + NULL denial-of-service
Cherokee long URL denial-of-service vulnerability
CSRSS Thread DoS - NT4
Domain Controller Request DoS - NT5
eFTP partial input denial-of-service vulnerability
Fragmented IGMP Packet - NT4
Host Announcement Flooding - NT4
Host Announcement Flooding - NT5
ICMP Data Fragment - NT4
IMail long SMTP password denial-of-service
IMail SMTP authentication denial-of-service
IMail status.cgi denial-of-service vulnerability
IMail web calendar blank "Content-Length" DoS
IMail web service Host field buffer overflow
Incomplete TCP Packet - NT4
Infradig long POST denial-of-service vulnerability
Inframail long POST denial-of-service
IP Fragment Reassembly - NT4
IP Fragment Reassembly - NT5
Kerberos LSA Memory Leak - NT5
Land DoS - NT4
Login Size Mismatch DoS - NT4
Malformed PPTP Packet Stream DoS - NT4
Malformed RPC Packet - NT5
MDaemon many connections denial-of-service
MDaemon PASS/UIDL race condition denial-of-service
MDaemon POP3 integer overflow vulnerability
Microsoft-DS Port 445 DoS - NT5
Modified Teardrop Attack - NT4
Monkey HTTP Daemon POST denial-of-service
OmniHTTPd PHP denial-of-service vulnerability
OOB DoS - NT4
Savant Web Server CGI request denial-of-service
Savant Web Server negative Content-Length DoS
Savant Web Server null character denial-of-service
Savant Web Server percent denial-of-service
Simple Web Server HTTP 404 denial-of-service
Simple Web Server no newline denial-of-service
SynAttackProtect denial-of-service
Telnet Server Flooding - NT5
Telnet to Port 135 Causes 100 Percent CPU Usage - NT4
Terminal Service RDP Data DoS - NT5
Terminal Services Invalid RDP Memory Leak
Weak Permissions on Winsock Mutex - NT4
WFTPD floppy drive access denial-of-service
WFTPD invalid write denial-of-service
WFTPD MLST denial-of-service vulnerability
WFTPD unprintable characters denial-of-service
Windows 2000 DNS Service memory leak
Windows RPC Endpoint Mapper denial-of-service - NT5
Windows RPC Endpoint Mapper denial-of-service - XP

FTP Servers

3CDaemon FTP long command buffer overflow
AIX ftpd Remote Buffer Overflow
Anonymous FTP
Anonymous Write
BFTPD NLST buffer overflow / format vulnerability
BFTPD SITE CHOWN buffer overflow vulnerability
BFTPD USER buffer overflow vulnerability
BlackMoon FTPd 1.5.2R2 Buffer Overflow
CesarFTP v0.98b directory traversal
CrushFTP 2.1.4 Directory Traversal
Debian ProFTPD root privilege retention
eFTP clear text password storage vulnerability
eFTP directory traversal vulnerability
eFTP long request buffer overflow vulnerability
eFTP malformed shortcut buffer overflow
eFTP password hash retrieval vulnerability
eFTP server directory and file existence discovery
EvilFTP server detected
FaSTream FTP++ Denial of service Attacks
Flash FTP Server Directory Traversal
FtpXQ directory traversal vulnerability
FtpXQ long directory name buffer overflow
G6 FTP Server v2.0 (beta 4)
G6 FTP Server v2.0 (beta 5)
GoodTech Systems FTP Connection DoS
GuildFTPD v0.97 Multiple Vulnerabilities
Hyperion FTP Server multiple buffer overflows
IIS Cumulative - DoS FTP status request - NT4
IIS Cumulative - DoS FTP status request - NT5
IIS FTP Bounce Attack
IIS FTP Download - NT4
IIS NLST - NT4
IpSwitch WS_FTP Server 4.0.2 Denial Of Service
Multiple Vulnerabilities in QVT/Term
Netware NWFTPD format string vulnerability
Personal FTP Server Multiple Vulnerabilities
PlatinumFTP Server Multiple Vulnerabilities
ProFTPD 1.2.0rc2 shutdown format bug
ProFTPd 1.2.0rc2 USER DoS
ProFTPD MKD / CWD path buffer overflow
Serv-U ftpd directory traversal
Serv-U FTP-Server 8.3 file view
Serv-U FTP-Server Brute Force Vulnerability
Serv-U FTP-Server CWD Remote Exploit
Serv-U FTP-Server Directory Traversal vulnerability
Serv-U FTP-Server Null Byte DoS
Serv-U FTP-Server RealPath Vulnerability
Serv-U FTP-Server SITE PASS DoS
Serv-U FTP-Server v2.2 Remote Exploit
Serv-U FTP-Server v2.3 Remote Exploit
Serv-U FTP-Server v2.3a Remote Exploit
Serv-U FTP-Server v2.3b Remote Exploit
Serv-U FTP-Server v2.4a Remote Exploit
Serv-U FTP-Server Windows Shortcut Remote Exploit
SlimServe FTPd 1.0 directory traversal
Solaris ftpd glob heap overflow
Solaris in.ftp core dump passwords problem
Solaris in.ftpd CWD username enumeration
SpoonFTP v1.0.0.12 Multiple buffer overflows
SunFTP directory traversal vulnerability
SunFTP long command buffer overflow vulnerability
SurgeFTP 1.0b DoS
TYPSoft FTP Server 0.95
TYPSoft Ftp Server v0.85 directory traversal
Vermillion FTP Daemon v1.23
War FTP 1.67.04 directory traversal
WarFTPD 1.67-04 directory listing
WarFTPd v2.34
WarFTPd v2.40
WFTPD /../ directory traversal vulnerability
WFTPD path/file mapping buffer overflow
WFTPD remote buffer overflow vulnerability
WFTPD RETR and CWD buffer overflow vulnerability
WFTPD RNTO denial-of-service
WFTPD server path disclosure vulnerability
WFTPD shortcut directory traversal vulnerability
WFTPD STAT path disclosure vulnerability
WFTPD STAT/LIST denial-of-service vulnerability
WFTPD triple-dot directory traversal vulnerability
Windows 95/NT War FTPD 1.65 Remote Exploit
Windows 95/NT WarFTPd 1.70.b01.04 Remote Exploit
WS FTP Server 1-0-2
wu-ftp 2.6.1 format string when debug set
wu-ftpd /bin misconfiguration vulnerability
wu-ftpd ABOR privilege escalation vulnerability
wu-ftpd distribution may contain backdoor
wu-ftpd fb_realpath() Off-By-One Buffer Overflow
wu-ftpd File Globbing Vulnerability
wu-ftpd globbing buffer overflow vulnerability
wu-ftpd globbing system resource exhaustion
wu-ftpd message file variable buffer overflow
wu-ftpd MKD / CWD path buffer overflow
wu-ftpd PASV core dump password disclosure
wu-ftpd privatepw symbolic link file overwriting
wu-ftpd RNFR arbitrary file overwriting
wu-ftpd setproctitle() format string vulnerability
wu-ftpd SITE EXEC race condition vulnerability
wu-ftpd V.2.4.2b18 long path overflow
wu-ftpd v2.5.0 mapped_path overflow
wu-ftpd v2.5.0 SITE NEWER DoS
wu-ftpd v2.6.0 conversion
wu-ftpd v2.6.0 SITE EXEC format
Xlight FTP 1.40 Server Denial Of Service
Xlight FTP 1.40 Server Directory Traversal

IP Services

Alerter Service a Potential Security Hazard
AltaVista Search engine directory traversal
CHARGEN service (Simple TCP Services on Windows)
Compaq web management agent DoS
Compaq web management agent file view
Disable SNMP Service if Not Needed
echo service
finger service
Fragmented IP
gopher service
Invalid RDP Data can Cause Terminal Service Failure - NT4
Invalid RDP Data can Cause Terminal Service Failure - NT5
IP Fragment Forwarding
ISAKMP Server detected
Messenger Service A Security Hazard
Microsoft PPTP Vulnerability - NT4
MS IP Forward Enabled
netstat service
rexec service
rlogin service
rsh service
Simple TCP Services - NT4
Spoofed Route Pointer - NT4
systat service
TCP Initial Sequence Number - NT4
TCP IP Security
Universal Plug and Play DoS
uucp service
VPN Server
Windows XP UPNP Vulnerabilities
X Windows Font Server (XFS)

Mail Servers

Artisoft XtraMail v1.11 Vulnerability
Authentication Error Allows Mail Relaying
aVirt Mail Server 3.3a
aVirt Mail Server 3.5
aVirt Mail Server Directory Creation vulnerability
aVirt POP Server Buffer overflow Vulnerability
Berkeley Sendmail v5 DEBUG Vulnerability
CMail 2.4
CMail 2.4.7 web interface overflow vulnerability
CMail 2.4.7 web interface vulnerability
CSM Mail Server
Exchange XEXCH50 Buffer Overflow
EXPN Command Enabled
FTGate Pro Mail Server is running
IMail arbitrary file deletion vulnerability
IMail arbitrary mailbox access vulnerability
IMail arbitrary user modification vulnerability
IMail attachment path disclosure vulnerability
IMail domain administration privilege escalation
IMail IMAP login buffer overflow vulnerability
IMail IMonitor buffer overflow vulnerability
IMail LDAP Server 5.0
IMail long mailbox name buffer overflow
IMail POP3 buffer overflow vulnerability
IMail predictable session ID vulnerability
IMail session ID disclosure vulnerability
IMail SMTP "From" field buffer overflow
IMail user existence disclosure vulnerability
IMail web calendar buffer overflow vulnerability
IMail web service buffer overflow vulnerability
IMail web service HTTP/1.0 GET buffer overflow
IMAP - University of WA 12.264 overflow
IMAPD authenticate overflow
Inetserv Webmail authentication buffer overflow
Inetserv Webmail long GET request buffer overflow
Interscan VirusWall 3.3 HELO overflow
Lotus Domino SMTP 5.04 buffer overflow
Lotus Domino SMTP server MAIL FROM buffer overflow
Lotus Domino SMTP server message bounce DoS
MailMax IMAP long password buffer overflow
Mail-Max Version 2.040 Remote Buffer Overflow
MDaemon IMAP long command buffer overflow
MDaemon IMAP long SELECT / EXAMINE buffer overflow
MDaemon POP3 long command buffer overflow
MDaemon POP3 long USER buffer overflow
MDaemon SMTP HELO buffer overflow vulnerability
MDaemon SMTP long command buffer overflow
Mercur IMAP4 Server 3-00-26
Mercur Mailserver 3.3 EXPN buffer overflow
Mercur POP3 Server 3-00-24
Microsoft Exchange Server 2003 OWA Privilege Escalation
Multiple Vulnerabilities in Microsoft Exchange 5.5 and 2000
NetcPlus POP3 vulnerability
NetcPlus SMTP DoS
QPOP 2.1.4-R3 Remote Buffer Overflow
QPOP 2.2 Remote Buffer Overflow
QPOP 2.3 Remote Buffer Overflow
QPOP 2.4 Remote Buffer Overflow
QPOP 2.41beta1 Remote Buffer Overflow
QPOP EUIDL remote overflow
QPOP fgets remote buffer overflow
QPOP LIST remote buffer overflow
QPOP pop_msg remote overflow
QPOPlock file DoS
Qpopper macro name buffer overflow
Qpopper poppassd privilege escalation
Sendmail 5.5
Sendmail 5.61
Sendmail 5.65
Sendmail 5.65c
Sendmail 8.12.9 Buffer Overflow
Sendmail 8.6.10
Sendmail 8.6.12 local root
Sendmail 8.6.9 ident execute attack
Sendmail 8.6.9 remote root via ident overflow
Sendmail 8.7.5 and lower overflows
Sendmail 8.7.5 and lower resource depletion
Sendmail 8.7.5 GECOS local root overflow
Sendmail 8.8.1 MIME remote root overflow
Sendmail 8.8.2 Daemon Mode Vulnerability
Sendmail 8.8.4 MIME overflow
Sendmail 8.8.4 overflow
Sendmail 8.8.5 DoS
Sendmail 8.8.6 DoS
Sendmail 8.8.8 HELO buffer overflow
Sendmail 8.9.1 DoS
Sendmail 8.9.2 DoS
Sendmail address field parsing buffer overflow
Sendmail aliases Database vulnerability
Sendmail Debug Command Line Integer Overflow Vulnerability
Sendmail Debugger Arbitrary Code Execution Vulnerability
Sendmail DNS Map TXT Overflow
Sendmail ETRN DoS
Sendmail group permissions escalation
Sendmail Invalid MAIL/RCPT Vulnerability
Sendmail maillocal vulnerability
Sendmail outdated
Sendmail prescan() address buffer overflow
Sendmail socket hijack vulnerability
Sendmail V5 local temporary file race condition
Sendmail version 5 remote root cmd execution
SLMail 2.6 VRFY Buffer Overflow Vulnerability
SLMail 3.0 CPU Utilization Vulnerability
SLMail 3.0 HELO Buffer Overflow Vulnerability
SLMail 3.0 MAIL FROM buffer overflow
SLMail 3.0 VRFY and EXPN Buffer Overflow Vulnerabilities
SLMail 3.0.2421 EXPN and VRFY overflows
SLMail 3-1 p27
SMTP Relaying
SMTP Service Potential Security Hazard
VRFY Command Enabled
YoungZSoft CMailServer USER buffer overflow

Miscellaneous

"Content Disposition" Variants
3D-FTP Client is installed
ActiveX Parameter Validation - NT5
Anonymous HTTP proxy detected
Application Invocation via Content-Type Field
ASN.1 Vulnerability Could Allow Code Execution - 2000
ASN.1 Vulnerability Could Allow Code Execution - 2003
ASN.1 Vulnerability Could Allow Code Execution - NT4
ASN.1 Vulnerability Could Allow Code Execution - XP
Audit Backup and Restore
Automatic Execution of Application Through Index.dat Parsing
BearShare escaped URL directory traversal
BearShare P2P Client Installed
BearShare triple-dot directory traversal
Blubster P2P Client Installed
Brocade switch SNMP vulnerabilities
Buffer Overflow In EMBED Tag
Buffer Overrun in Gopher Protocol Handler
Buffer Overrun in Legacy Text Formatting ActiveX Control
Certificate Validation Flaw Identity Spoofing - NT4
Certificate Validation Flaw Identity Spoofing - NT5
Certificate Validation Flaw Identity Spoofing - XP
Clip Art Buffer Overrun Vulnerability
Clipboard Data Leak - NT4
Compaq Insight Manager cross-site scripting
Cookie-based Script Execution
Cross Domain Verification in Object Tag
Cross-Site Scripting in Local HTML Resource
Cryptographic flaw in RDP Protocol - NT5
Cryptographic flaw in RDP Protocol - XP
Cumulative VM Update
CuteNews Debug Information Disclosure
DC++ P2P Client Installed
DeleGate error page cross-site scripting
DeleGate POP proxy USER buffer overflow
DeleGate robots.txt buffer overflow
Desktop Separation Vulnerability - NT5
Dialer Entry Overflow - NT4
Digital Certificate Enrollment Allows Cert Deletion - NT5
Digital Certificate Enrollment Allows Cert Deletion - XP
Direct Connect 2 P2P Client Installed
DirectDraw Enabled
Directory Service Restore Mode - NT5
Document.Open Domain Verification Bug
Erroneous VeriSign Certificates Pose Spoofing Hazard
Event Viewer buffer overflow - NT5
File Download Spoofing Content Tag Bug
File extensions spoofable in MSIE Download Dialog
File Origin Spoofing Bug
File reading via GetObject function
Fix for TCSEC C2 Security level
Flaw in Microsoft VM Could Enable System Compromise
Flaw in Windows WM_TIMER Message Handler - NT4
Flaw in Windows WM_TIMER Message Handler - NT5
Flaw in Windows WM_TIMER Message Handler - XP
Frame Domain Verification Vulnerability
Gnucleus P2P Client Installed
Grokster P2P Client Installed
Group Policy File Locking - NT5
Home Directory logon path attack - NT4
HP JetDirect telnet password disabled
HTML Help Buffer Overflow - NT4
HTML Help Buffer Overflow - NT5
HTML Help Buffer Overflow - XP
HyperTerminal Buffer Overflow - NT5
Icecast 1.3.8 multiple buffer overflows
Icecast 1.3.9 multiple buffer overflows
Icecast appended character denial-of-service
Icecast arbitrary directory existence disclosure
Icecast escaped double-dot directory traversal
Icecast long GET buffer overflow
Icecast print_client() format string vulnerability
IE Cookie Reading Vulnerability Pair A
IE Cookie Reading Vulnerability Pair B
IE ForceFeed EXE Vulnerability
IE ForceFeed EXE Vulnerability - NT6
IE/OE allows script execution even when disabled via XSL in IF
Incorrect MIME Header Can Cause IE to Execute E-mail Attachment
Index Server Search Function Contains Unchecked Buffer
Index Server Search Overflow
Information Disclosure Vulnerability in Microsoft Excel 2002
Information Disclosure Vulnerability in Microsoft Word 2000
Information Disclosure Vulnerability in Microsoft Word 2002
Internet Explorer 5.01 cross-domain security vulnerabilities
Internet Explorer 5.5 cross-domain security vulnerabilities
Internet Explorer 6 cross-domain security vulnerabilities
Internet Explorer 6 SP1 cross-domain security vulnerabilities
Internet Explorer 6 SP1 Cumulative Patch 818529
Internet Explorer 6 SP1 Cumulative Patch 818529 - NT6
Internet Explorer Cumulative Patch 824145
Internet Explorer Cumulative Patch 824145 - 2003
Internet Explorer Cumulative Patch 832894
Internet Explorer Cumulative Patch 832894 - 2003
Internet Explorer HTTP Request Hijacking Vulnerability
Internet Explorer Object Data Remote Execution - NT6
Internet Explorer Object Data Remote Execution Vulnerability
Internet Explorer Object Type Property Overflow
Internet Explorer Object Type Property Overflow - NT6
InterNetNews Control Message Handling Buffer Overflow
IOCTL Console Vulnerability - NT4
IRIX Performance Copilot Vulnerabilities
Kazaa Installed
KnownDLLs List Vulnerability - NT4
LimeWire P2P Client Installed
Local Executable Invocation via Object tag
Local Information Disclosure through HTML object
Local Security Policy Corruption - NT5
Macromedia Flash ActiveX Path Vulnerability
Macromedia Flash Header Vulnerability 1
Macromedia Flash Header Vulnerability 2
Malformed Dotless IP Privilege Escalation
Malformed Environment Variable - NT4
Malformed Environment Variable - NT5
Malformed Extension Data in URL - NT4
Malformed Extension Data in URL - NT5
Malformed Help File - NT4
Malformed Image Header DoS - NT4
Malformed Phonebook Entry - NT4
Malformed RPC Request Can Cause Service Problems
Malformed RTF Control Word - NT4
Malformed Spooler Request - NT4
Malformed TCP IP Print Request - NT4
Malformed TCP IP Print Request - NT5
Many Serious Vulnerabilities in Internet Explorer
Microsoft Accessibility Utility Privilege Escalation
Microsoft BizTalk Server 2002 ISAPI buffer overflow
Microsoft FrontPage Extensions Multiple Vulnerabilities - 2000
Microsoft FrontPage Extensions Multiple Vulnerabilities - XP
Microsoft HTML Converter Buffer Overrun - 2003
Microsoft HTML Converter Buffer Overrun - NT4
Microsoft HTML Converter Buffer Overrun - NT5
Microsoft HTML Converter Buffer Overrun - XP
Microsoft Internet Explorer Cumulative Patch 828750
Microsoft Internet Explorer Cumulative Patch 828750 - 2003
Microsoft ISA Server 2000 H.323 Filter Buffer Overflow
Microsoft ISA Server DNS IDS DoS
Microsoft MDAC Buffer Overflow 832483
Microsoft Office Excel Automatic Macro Execution
Microsoft Office Word Script Overflow
Microsoft VM ByteCode Verifier System Compromise
Microsoft VM ByteCode Verifier System Compromise
Microsoft Windows Media Services ISAPI Remote Command Execution
Mixed Object Access - NT5
Morpheus P2P Client Installed
MPSB03-03 Security Patch for Macromedia Flash Player
MS03-013: Kernel Debug Message Handling Buffer Overflow - NT4
MS03-013: Kernel Debug Message Handling Buffer Overflow - NT5
MS03-013: Kernel Debug Message Handling Buffer Overflow - XP
MS03-014: Cumulative Patch for Outlook Express
MS03-015: Cumulative Patch for Internet Explorer
MSBlaster DCOM Worm (infection audit)
MSScriptControl GetObject Local File Reading Bug
Multiple Remote Root Vulnerabilities in Yahoo Messenger
NetMeeting Desktop Sharing - NT5
Netmon Protocol Parsing - NT4
Netmon Protocol Parsing - NT5
New variant of Telnet Invocation vulnerability
NFS share open to Everyone
Non-Disclosed Dotless IP Zone Spoofing Vulnerability Variant
NT Help File Buffer Overflow Vulnerability - NT4
NTFS Master File Table corruption vulnerability - NT4
Office 2000 Service Pack II Update
Office 2000 UA Control Vulnerability
OffloadModExpo Registry Permissions - NT4
Original Application Invocation By Null Byte Filename Bug
Outlook 2000 View Control Information Disclosure
Outlook Express S/MIME Parsing Could Enable System Compromise
Outlook VCARD Overflow Vulnerability
Overnet P2P Client Installed
Packaging Anomaly - NT5
Performance counter Memory Leak Vulnerability - NT4
PNG Deflate Heap Corruption Vulnerability
POSIX and OS/2 Subsystems Exist
Predictable Named Pipes Vulnerability
Privilege Elevation flaw in Network Connection Manager (NCM)
Protected Store Key Length - NT5
Proxy+ remote administration vulnerability
Proxy+ telnet gateway administration vulnerability
QuickTime protocol handler buffer overflow
RASMAN Buffer Overflow Vulnerability - NT4
RDISK Registry Enumeration File - NT4
RealOne Player - RealPlayer Multiple Vulnerabilities
RealServer memory contents disclosure
Recycle Bin Creation - NT4
Relative Shell Path - NT4
Relative Shell Path - NT5
Remote Registry Access Authentication - NT4
Reset Browser Frame Vulnerability - NT4
Reset Browser Frame Vulnerability - NT5
SAMBA SWAT Logging Failure Vulnerability
Screen Saver Vulnerability - NT4
Script Execution After Security Checks Bug
Script within Cookies Reading Cookies
Server SSL Certificate Spoofing Bug
Service Control Manager Named Pipe Impersonation - NT5
SHOUTcast log viewer cross-site scripting
Spoofed LPC Port Request - NT4
SSL Over LDAP Vulnerability
SSL URL Spoofing Vulnerability
Syskey Key stream Reuse Vulnerability - NT4
System Not Responding on Forced Scan
Unchecked Buffer in MSN Chat Control Can Lead to Code Execution
Unchecked buffer in the Multiple UNC Provider - NT5
Unprotected IOCTLs - NT4
Variant of Cross-Site Scripting in Local HTML Resource
Virtualized UNC Share - NT4
Virtualized UNC Share - NT5
Visual Basic for Applications Document Property Overflow (VBA5)
Visual Basic for Applications Document Property Overflow (VBA6)
Windows 2000 IrDA system failure
Windows 2000 Security Rollup Package 1
Windows 2000 Service Pack 3
Windows 2000 Troubleshooter ActiveX Buffer Overflow
Windows Authenticode Verification - 2003
Windows Authenticode Verification - NT4
Windows Authenticode Verification - NT5
Windows Authenticode Verification - XP
Windows DirectX MIDI heap corruption
Windows Help and Support Buffer Overrun - 2003
Windows Help and Support Buffer Overrun - NT4
Windows Help and Support Buffer Overrun - NT5
Windows Help and Support Buffer Overrun - XP
Windows ListBox Control Function Buffer Overrun - 2003
Windows ListBox Control Function Buffer Overrun - NT4
Windows ListBox Control Function Buffer Overrun - NT5
Windows ListBox Control Function Buffer Overrun - XP
Windows NT 4.0 SP6 Winlogon handle leak
Windows Script Engine JScript buffer overflow
Windows Trusted Domains Verify Vulnerability - NT4
Windows Trusted Domains Verify Vulnerability - NT5
Windows XP audio file attributes buffer overflow
Windows XP Explorer ShellClassInfo buffer overflow
Windows XP Redirector buffer overflow
WordPerfect Document Converter Buffer Overflow
WSH Allows Reading Local Files Via GetObject Method
X Windows Server Access Control Disabled
XML File Reading via Redirect
Zone Spoofing through Malformed Web Page
Digital Certificate Enrollment Allows Cert Deletion - NT4

NetBIOS

Blank Password Vulnerability - NT4
Domain Account Lockout - NT5
Enabling NetBT to Open IP Ports Exclusively
Enumerate Files via Netbios
Enumerate Hotfixes in Registry via Netbios
Enumerate Machine Info via Netbios
Enumerate Named Pipes via Netbios
Enumerate Registry via Netbios
Enumerate Shares via Netbios
Enumerate Users via Netbios
LPC and LPC Ports Vulnerabilities - NT4
LPC and LPC Ports Vulnerabilities - NT5
Malformed LSA Request - NT4
Malformed NTLMSSP request - NT4
Malformed Resource Enumeration - NT4
Malformed Security Identifier - NT4
Microsoft SMB Request Handler Buffer Overflow - NT4
Microsoft SMB Request Handler Buffer Overflow - NT5
Microsoft SMB Request Handler Buffer Overflow - XP
MS Network Share Provider SMB Request Flaw NT4
MS Network Share Provider SMB Request Flaw NT5
MS Network Share Provider SMB Request Flaw XP
Named Pipes Over RPC Issue - NT4
Netbios DoS Name Spoofing Not Ignored
NetBIOS Name Server Protocol Spoofing - NT4
NetBIOS Name Server Protocol Spoofing - NT5
NetBIOS Name Service Query Information Disclosure - 2003
NetBIOS Name Service Query Information Disclosure - NT4
NetBIOS Name Service Query Information Disclosure - NT5
NetBIOS Name Service Query Information Disclosure - XP
Network DDE Agent System Request - NT5
Null Session
Samba multiple buffer overflows
Samba packet reassembly buffer overflow
Samba password change request buffer overflow
Samba REG file writing race condition
Samba trans2open buffer overflow
Service Named Pipe Impersonation - NT5
SMB Signing
SMB Signing Group Policy Modification - NT5
SMB Signing Group Policy Modification - XP
Telnet Client NTLM Authentication - NT5
Unchecked Buffer in Network Share Provider DoS
Windows 9x/Me Share Level Password vulnerability (Opaserv worm)
Windows Messenger Service Buffer Overrun
Windows Messenger Service Buffer Overrun - 2003
Windows Messenger Service Buffer Overrun - NT4
Windows Messenger Service Buffer Overrun - NT5
Windows Messenger Service Buffer Overrun - XP
Windows Multiple Workstation Vulnerabilities - 2000
Windows Multiple Workstation Vulnerabilities - XP
Windows share with unprotected read access
Windows share with unprotected write access
WINS Could Allow Code Execution - 2000
WINS Could Allow Code Execution - 2003
WINS Could Allow Code Execution - NT4

Registry

Active Scripting Enabled For Restricted Zone
AEDEBUG registry key has insecure permissions
Allocate CDROMS
Allocate floppies
Anonymous Registry
ASP Upload File Deletion Vulnerability
ASP Upload Register Server Vulnerability
ASP Upload Remove Directory Vulnerability
Auto Admin Logon
Auto Sharing Drive Problem - NT Server
Auto Sharing Drive Problem - NT Wks
CD Auto Run
Clear Page File
CrashonAuditFail
Event Auditing
Explorer Shell Buffer Overflow - NT4
Exported registry files associated with REGEDIT.EXE
File System Object Registered
Force User to Log Out if Shell Crashes
Guest Access to AppLog
Guest Access to SecLog
Guest Access to SysLog
LM Hash
LM MSCHAP
MS RAS Logging
MSCHAPv2 VPN
Multiple Remote Root Vulnerabilities in AOL IM
No Remote Registry Access Available
NTFS 8 Dot 3
OS2 Subsystem Enabled
Posix Subsystem Enabled
Printer Driver Sec
ProfileList Registry Key Permissions
Record Crash to Event Log
Registry Permission - NT4
Scheduler Service Potential Security Hazard
Scheduling Agent a Potential Security Hazard
Screen Saver
Shutdown without Logon
SNMP Parameters - NT5
Unchecked buffer in the Multiple UNC Provider - NT4
Unencrypted SMB passwords explicitly allowed - 98
Unencrypted SMB passwords explicitly allowed - NT4
Unencrypted SMB passwords explicitly allowed - NT5, XP
Winlogon Registry Key Permissions
WinVNC Key Permissions

Remote Access

Attack FTP backdoor
Back Orifice 2000 registry
Back Orifice detected
Bagle Worm Detected
Buffer Overflow in NT Telnet Server
Bugbear infection detected
Byte Fusion Telnet v1.1
CaptureScreen client
CaptureScreen server
Carbon Copy
CDE Subprocess Control Service (dtspcd) BoF
Desktop Delivery server
Dialup Save Password
GoodTech Telnet Server v2.2.1
HackATack backdoor
IBM AIX CLSTRMGR DoS
Imail Whois buffer overflow vulnerability
Invisible Keylogger STEALTH
IRIX nsd Cache DoS Vulnerability
Jordan Windows Telnet Server Username Buffer Overflow
Millennium backdoor
Modem Installed
MS RAS Encrypt
Multiple vendor login environment variable buffer overflow
Multiple Vulnerabilities in LPD
MyDoom-MIMAIL.R Virus Detected
MyDoom-MIMAIL.R Virus Remotely Detected
NetBus backdoor
NetBus Pro registry
NetBus Pro server
Netlook client
Netlook server
Netlook server service
Netopia Timbuktu Pro UserID and Password Clear Text
Oracle9iAS Web Cache Vulnerabilities
Outdated SSH
PC Protect STEALTH
PCAnywhere
PPP Client Security
RAS and RRAS Password - NT4
Remotely Anywhere
Remotely Anywhere Server
Seattle Labs Remote NT server
SKIN NT keyboard logger
telnet service
Terminal Services enabled
Timbuktu Remote Control Service enabled
Unchecked buffer in PPTP DoS - NT5
Unchecked buffer in PPTP DoS - XP
VNC server detected
WinVNC RAS

Rpc Services

DCOM Enabled
Enable DCOM port tests
Memory Leak in Lsass.exe
Microsoft RPC Locator buffer overflow - NT4
Microsoft RPC Locator buffer overflow - NT5
Microsoft RPC Locator buffer overflow - XP
MSBlaster DCOM worm infection detected
MSBlaster.B variant worm infection detected
MSBlaster.C variant worm infection detected
MSBlaster.E variant worm infection detected
MSBlaster.F variant worm infection detected
MSBlaster.G variant worm infection detected
Multiple Vendor amd Buffer Overflow
Multiple Vendor CDE TT_SESSION Buffer Overflow
Nachi DCOM/WebDAV worm infection detected
Open NFS Share
RPC autofsd
RPC automounter overflow
RPC cachefsd service
RPC fam buffer overflow
RPC mountd information leak
RPC mountd service
RPC nlockmgr service
RPC pcnfsd service
RPC rexd non root command execute
RPC rpc.admind service
RPC rpc.cmsd service
RPC rpc.espd service
RPC rpc.mountd overflow
RPC rpc.nisd service
RPC rpc.portmap service
RPC rpc.pwdauthd service
RPC rpc.statd call relaying
RPC rpc.statd service
RPC rpc.yppasswdd service
RPC rpc.ypupdated service
RPC rstatd service
RPC rusersd username enumeration
RPC rwalld service
RPC sadmind overflow
RPC selection session sniffing
RPC statd file deletion vuln
RPC statd format string attack
RPC statd overflow
RPC tooltalk services
RPC ttsessionr weak auth execution
RPC walld message spoofing
RPC ypupdated
Solaris cachefsd heap overflow
Solaris snmpXdmid Buffer Overflow
ToolTalk rpc.ttdbserverd format string vulnerability
Windows RPC DCOM interface buffer overflow
Windows RPC DCOM interface buffer overflow - 2003
Windows RPC DCOM interface buffer overflow - NT4
Windows RPC DCOM interface buffer overflow - NT5
Windows RPC DCOM interface buffer overflow - XP
Windows RPC DCOM multiple vulnerabilities
Windows RPC DCOM multiple vulnerabilities - 2003
Windows RPC DCOM multiple vulnerabilities - NT4
Windows RPC DCOM multiple vulnerabilities - NT5
Windows RPC DCOM multiple vulnerabilities - XP

Service Control

Clipbook Service a Security Hazard
CMail 2-3
FTGate 2.1
FTGate 2.1 directory traversal
FTGate 2.2 brute force vulnerability
Mercur Control Service 3-00-21
NTMail 4.20 file disclosure
Windows Home - Scheduling Agent Hazard

SNMP Servers

An SNMP community name is guessable
Buffer Overflow in SNMP Service - NT5
CacheFlow SNMPv1 Request/Trap vulnerabilities
Cisco 12000 ACL multiple vulnerabilities
Cisco aaa Failure
Cisco Catalyst 5.4 'enable' mode authentication bypass
Cisco Catalyst 7.5 'enable' mode authentication bypass
Cisco Catalyst HTTP buffer overflow
Cisco Catalyst SNMP multiple vulnerabilities
Cisco Catalyst TCP services denial-of-service
Cisco HTML parser processing vulnerability
Cisco IOS CEF information leakage vulnerability
Cisco IOS Firewall Feature set filter bypass
Cisco IOS ICMP redirect routing vulnerability
Cisco IOS IPv4 input queue blocking denial-of-service
Cisco IOS multiple SIP vulnerabilities
Cisco IOS OSPF neighbor announcement buffer overflow
Cisco IOS packet filtering bypass vulnerability
Cisco IOS predictable TCP initial sequence numbers
Cisco IOS SSH multiple vulnerabilities
Cisco IOS 'tacacs' keyword access control list malfunction
Cisco IOS TFTP long file name buffer overflow
Cisco Request/Trap SNMPv1 vulnerabilities
Cisco SSH malformed packet denial-of-service
Cisco VPN 3000 Concentrator authentication buffer overflow
Cisco VPN 3000 Concentrator authentication bypass
Cisco VPN 3000 Concentrator certificate password disclosure
Cisco VPN 3000 Concentrator IPSEC tunnel vulnerability
Cisco VPN 3000 Concentrator ISAKMP multiple vulnerabilities
Cisco VPN 3000 Concentrator user password disclosure
Compaq SNMPv1 Request/Trap vulnerabilities
Concord SNMPv1 Request/Trap vulnerabilities
Default public SNMP community string
F5 Networks SNMPv1 Request/Trap vulnerabilities
HP SNMPv1 Request/Trap vulnerabilities
IBM AIX SNMPv1 vulnerabilities
IBM Tivoli SNMPv1 Request/Trap vulnerabilities
Inktomi SNMPv1 Request/Trap vulnerabilities
Lexmark SNMPv1 multiple vulnerabilities
Lotus Domino SNMPv1 Trap/Request vulnerabilities
Micromuse SNMPv1 Request/Trap vulnerabilities
Netscape SNMPv1 Request/Trap vulnerabilities
Nortel SNMPv1 Request/Trap vulnerabilities
Novell Netware SNMPv1 Request/Trap vulnerabilities
Oracle SNMPv1 Request/Trap vulnerabilities
SGI IRIX SNMPv1 vulnerabilities
SNMP default community name
Solaris SNMP default community name
Stonesoft SNMPv1 Request/Trap vulnerabilities
Sun Soltice SNMPv1 multiple vulnerabilities
Unicenter SNMPv1 Request/Trap vulnerabilities

SSH Servers

OpenSSH 3.0 channel code buffer overflow vulnerability
OpenSSH 3.3 PAMAuth Integer Overflow
OpenSSH 3.3 Remote Challenge Integer Overflow
OpenSSH 3.7.0 Buffer Overflow
OpenSSH Client Unauthorized Remote Forwarding Vulnerability
OpenSSH Kerberos 4 TGT/AFS Token Buffer Overflow Vulnerability
OpenSSH Kerberos Arbitrary Privilege Elevation Vulnerability
OpenSSH Key Based Source IP Access Control Bypass Vulnerability
OpenSSH Key based source IP access control bypass vulnerability
OpenSSH PAM Implementation Multiple Vulnerabilities
OpenSSH PAM Session Evasion Vulnerability
OpenSSH Private Key Authentication Check Vulnerability
OpenSSH unauthorized forwarding vulnerability
OpenSSH UseLogin Environment Variable Passing Vulnerability
OpenSSH UseLogin Vulnerability
OpenSSH UseLogin Vulnerability
RSARef buffer overflow vulnerability
Secure Shell Password Brute Force Vulnerability
SSH 1.2.27 Kerberos Ticket Cache Exposure Vulnerability
SSH 1.5 PKCS #1 Version 1.5 Session Key Retrieval Vulnerability
SSH Authentication Socket File Creation Vulnerability
SSH AuthSock vulnerability
SSH client xauth Vulnerability
SSH Communications Security Short Password Login Vulnerability
SSH CRC-32 Compensation Attack Detector Vulnerability
SSH Kerberos ticket vulnerability
SSH password brute force vulnerability
SSH scp file overwrite vulnerability
SSH Secure-RPC Weak Encrypted Authentication Vulnerability
SSH Xauth vulnerability
SSH1 SSH Daemon Logging Failure Vulnerability
SSH-agent vulnerability
SSHD RSAREF Buffer Overflow Vulnerability
Van Dyke Technologies VShell Buffer Overflow Vulnerability
Van Dyke Technologies VShell Port Forwarding Vulnerability
VShell gateway 1.0.1 format bug

Web Servers

3Com HomeConnect Cable Modem Buffer Overflow
Absent Directory Browser Argument - NT4
Absent Directory Browser Argument - NT5
Abyss Web Server Directory Protection Bypass
Alibaba 2.0 CGI vulnerabilities
Alibaba 2.0 directory traversal vulnerability
Alibaba 2.0 DoS
Alibaba 2.0 piped command vulnerability
AnalogX SimpleServer WWW 1.03 DoS
AnalogX SimpleServer WWW 1.05 DoS
AnalogX SimpleServer WWW Get overflow
AOLserver file password protection bypass
AOLserver long password buffer overflow
AOLserver Ns_PdLog buffer overflow vulnerability
AOLserver Ns_PdLog format string vulnerability
AOLserver triple-dot directory traversal
Apache 1.1.3 Symlink vulnerability
Apache 1.3.10 Mass virtual hosting vulnerability
Apache 1.3.11 Cross-site scripting vulnerability
Apache 1.3.12 Mass virtual hosting CGI source disclosure
Apache 1.3.12 mod_rewrite file disclosure
Apache 1.3.2 Multiple header Denial of Service vulnerability
Apache 1.3.20 Large uri directory listing Vulnerability
Apache 1.3.20 Multiview directory listing
Apache 1.3.20 Root Directory Access Vulnerability
Apache 1.3.20 split-logfile vulnerability
Apache 1.3.27 0x1A Character Logging DoS
Apache 1.3.27 HTDigest Command Execution
Apache 1.3.3 Denial of service attack
Apache 2 mod_security Module Heap Corruption
Apache 2.0 Cipher Downgrade
Apache 2.0.39 Directory Traversal vulnerability
Apache 2.0.40 Path disclosure vulnerability
Apache 2.0.41 mod_dav DoS
Apache 2.0.43 MS-DOS Device Name DoS
Apache 2.0.44 LineFeed DoS
Apache 2.0.45 OS2 Filestat DoS
Apache 2.0.46 APR_PSPrintf Memory Corruption
Apache CGI Source Code Viewing Via POST
Apache chunking integer overflow vulnerability
Apache HTTP Server FTP proxy server DoS
Apache HTTP Server prefork MPM denial of service
Apache httpd scoreboard modification vulnerability
Apache mod_alias and mod_rewrite Buffer Overflow
Apache mod_ssl session caching buffer overflow
Apache Server Side Include cross-site scripting
Apache Terminal Escape Sequence
Apache Tomcat JSP Engine DoS
Apache Tomcat Null Character Malformed Request DoS
Apache Tomcat servlet cross-site scripting vulnerability
Apache User Enumeration
Apache Version 1.1.1
Apache Version 1.2.5
Apache Version 1.2.5
Apache Win32 shell metacharacter command execution
Apache/Tomcat Mod_JK Chunked Encoding DoS
ApacheBench multiple buffer overflows
ASP Cache Vulnerability - NT4
Avirt 4.2 Proxy Buffer Overflow
BadBlue ../ directory traversal vulnerability
BadBlue administrative access vulnerability
BadBlue administrative interface file access issue
BadBlue cleanSearchString() cross-site scripting
BadBlue directory contents disclosure issue
BadBlue escaped null source code disclosure
BadBlue ext.dll cross-site scripting vulnerability
BadBlue file upload and execution vulnerability
BadBlue GET request denial-of-service
BadBlue HTTP 302 message cross-site scripting
BadBlue long URL buffer overflow vulnerability
BadBlue many invalid requests denial-of-service
BadBlue multiple cross-site script vulnerabilities
BadBlue null byte + extension file disclosure
BadBlue path disclosure vulnerability
BadBlue plain-text password storage vulnerability
BadBlue triple-dot-slash directory traversal
BEA Systems WebLogic Server DOS Device Denial of Service
BEA WebLogic data/connection flooding DoS
BEA WebLogic escaped URL disclosure vulnerability
BEA WebLogic file disclosure vulnerability
BEA WebLogic FileServlet showcode vulnerability
BEA WebLogic JSP showcode vulnerability
BEA WebLogic JSP/JHTML remote command execution
BEA WebLogic password visibility vulnerability
BEA WebLogic Proxy buffer overflow vulnerabilities
BEA WebLogic Server /file/ showcode vulnerability
BEA WebLogic Server double-dot buffer overflow
BEA WebLogic SSIServlet showcode vulnerability
BEA WebLogic URL parsing path disclosure
BRS Web Weaver 1.06 POST and HEAD DoS
BRS Web Weaver 1.06 User-Agent DoS
BSCW 4.0.x remote command execution
Buffer overrun in SmartHTML Interpreter
Caucho Resin caucho-status Servlet Information Disclosure
Caucho Resin Directory Traversal
Caucho Resin Server Example Servlet Path Disclosure
CGI - ash Interpreter
CGI - bash Interpreter
CGI - ksh Interpreter
CGI - Perl Interpreter
CGI - rksh Interpreter
CGI - sh Interpreter
CGI - tcsh Interpreter
CGI - zcsh Interpreter
Cherokee directory traversal vulnerability
Cherokee insecure privilege release vulnerability
Cherokee remote command execution vulnerability
Cold Fusion - Display Open File
Cold Fusion - ExprCalc
Cold Fusion - Open File
Colon $ DATA - NT4
CommuniGatePro 4.0.6 session hijacking vulnerability
Double Byte Code Page Vulnerability - NT4
Enterprise 3.6p2 accept overflow
Entrust getAccess file read
Escape Character Parsing Vulnerability - NT4
Eserv 2.97 Password Protected File Arbitrary Read Access
Essentia directory traversal vulnerability
Essentia long URL buffer overflow vulnerability
Falcon Web Server Unauthorized File Disclosure
File Fragment Reading via HTR - NT4
File Fragment Reading via HTR - NT5
File Permission Canonicalization - NT4
File Permission Canonicalization - NT5
Forum Web Server multiple vulnerabilities
FreeProxy/FreeWeb v3.61 CreateFile Denial Of Service
FreeProxy/FreeWeb v3.61 Directory Traversal
FrontPage Password File - Authors.pwd
FrontPage Password File - Service.pwd
FrontPage Password File - Users.pwd
GetExtensionVersion Vulnerability - NT4
Groupwise arbitrary file retrieval vulnerability
HTTP TRACE method supported
IBM HTTPD 1.3.6.3 GET overflow
IBM HTTPD root directory vulnerability
IBM Net.Commerce 3.0 remote command execution
IBM Websphere Caching Proxy helpout.exe DoS
IBM WebSphere Default Servlet Showcode Disclosure
IBM WebSphere Net.Commerce db2www.ini Information Disclosure
IBM WebSphere Net.Commerce Install Path Dislcosure
IDA Real Path Attack
IDQ Real Path Attack
IIS - ISM Source Fragment Disclosure
IIS 3.0 Extended ASP Source Disclosure Vulnerability
IIS 4.0 HTR ISAPI chunking buffer overflow
IIS 5.0 File Request Parsing Vulnerability
IIS 5.0 HTR ISAPI chunking buffer overflow
IIS 5.0 In-Process Table Privilege Elevation Vulnerability
IIS 5.0 IPP ISAPI Host overflow
IIS 5.0 Malformed URL DoS - NT5
IIS 5.0 WebDAV buffer overflow vulnerability
IIS 8-3 path vulnerability - NT4
IIS Admin Pwd
IIS Chunked Encoding Post - NT4
IIS Cross Site Scripting - NT4
IIS Cross Site Scripting - NT5
IIS Cumulative - ASP Chunked Encoding Overflow
IIS Cumulative - ASP Chunked Encoding Overflow - NT4
IIS Cumulative - ASP Chunked Encoding Overflow - NT5
IIS Cumulative - ASP Chunked Encoding Variant
IIS Cumulative - ASP Chunked Encoding Variant - NT4
IIS Cumulative - ASP Server-Side Include Overflow
IIS Cumulative - ASP Server-Side Include Overflow - NT4
IIS Cumulative - HTR ISAPI extension overflow
IIS Cumulative - HTR ISAPI extension overflow - NT4
IIS Cumulative - HTTP Header Overflow
IIS Cumulative - HTTP Header Overflow - NT4
IIS Cumulative - IIS Help File search flaw
IIS Cumulative - IIS Help File search flaw - NT4
IIS Cumulative - URL error handling bug
IIS Cumulative - URL error handling bug - NT4
IIS Cumulative - XSS flaw in HTTP Error
IIS Cumulative - XSS flaw in HTTP Error - NT4
IIS Cumulative - XSS in Redirect Response
IIS Cumulative - XSS in Redirect Response - NT4
IIS Data Stream ASP Source Disclosure - NT4
IIS HTR ISAPI chunking buffer overflow
IIS IDA remote system overflow
IIS Sample Files
IIS Superfluous Decoding - NT4 (nimda worm)
IIS Superfluous Decoding - NT5 (nimda worm)
IIS Unicode Folder Traversal - NT4
IIS Unicode Folder Traversal - NT5
IIS4 Long Request Log Vulnerability - NT4
IIS4 NT4 IDA remote overflow (CodeRed worm)
IIS4-5 escape characters decode vulnerability
IIS5 NT5 IDA remote overflow (CodeRed worm)
IIS5 Translate Source Disclosure
IISAdmin
IISHelp
Interscan VirusWall - base64 admin password
Interscan VirusWall ISADMIN buffer overflow
Interscan VirusWall root symlink
Invalid URL - NT4
iWeb Mini Web Server directory traversal vulnerability
Jana Webserver v1.46 directory traversal
LocalWEB2000 Directory Traversal
LocalWEB2000 Directory Traversal
Lotus Domino 5.0.5 Directory Traversal - UNIX
Lotus Domino 5.0.5 Directory Traversal - Windows
Lotus Domino 5.0.7 DOS URL Denial of Service
Lotus Domino a6qarea.nsf File Disclosure
Lotus Domino admin.nsf File Disclosure
Lotus Domino admin4.nsf File Disclosure
Lotus Domino admin5.nsf File Disclosure
Lotus Domino agentrunner.nsf File Disclosure
Lotus Domino anonymous access cannot be disabled
Lotus Domino catalog.nsf File Disclosure
Lotus Domino CGI error handling buffer overflow
Lotus Domino COM object control handler buffer overflow
Lotus Domino da.nsf File Disclosure
Lotus Domino database enumeration
Lotus Domino dba4.nsf File Disclosure
Lotus Domino decsadm.nsf File Disclosure
Lotus Domino directory traversal vulnerability
Lotus Domino domcfg.nsf File Disclosure
Lotus Domino domlog.nsf File Disclosure
Lotus Domino events4.nsf File Disclosure
Lotus Domino Fictionary Value Field POST request DoS
Lotus Domino HTTP Redirect buffer overflow
Lotus Domino incomplete POST request DoS
Lotus Domino iNotes s_ViewName/Foldername buffer overflow
Lotus Domino LDAP service buffer overflow
Lotus Domino log.nsf File Disclosure
Lotus Domino mab.nsf File Disclosure
Lotus Domino mtatbls.nsf File Disclosure
Lotus Domino names.nsf File Disclosure
Lotus Domino perweb.nsf File Disclosure
Lotus Domino searchme.nsf File Disclosure
Lotus Domino setup.nsf File Disclosure
Lotus Domino single-dot URL DoS
Lotus Domino smency.nsf File Disclosure
Lotus Domino smtptbls.nsf File Disclosure
Lotus Domino statrep.nsf File Disclosure
Lotus Domino SunRPC Denial of Service
Lotus Domino Web Retriever buffer overflow
Lotus Domino web root path disclosure
Lotus Domino web.nsf File Disclosure
Macromedia JRun Admin Server Authentication Bypass
Malformed GET request - NT4
Malformed Hit-Highlighting - NT4
Malformed Hit-Highlighting - NT5
Malformed Hit-Highlighting Argument - NT4
Malformed Hit-Highlighting Argument - NT5
Malformed HTR Request - NT4
Malformed HTTP Request - NT4
Malformed Web Form Submission - NT4
Malformed Web Form Submission - NT5
Malformed WebDAV Request DoS - NT5
MDAC RDS is accessible
Mdaemon WebConfig 2.8.4 URL overflow vulnerability
Metadot Multiple Vulnerabilities
Microsoft IIS 5.0 Cumulative Patch 811114
Microsoft IIS 5.1 Cumulative Patch 811114
Microsoft IIS WebDAV "Search" Denial of Service Vulnerability
Microsoft Site Server Information Leakage and Data Modification
Moby NetSuite long URL buffer overflow
Mod_SSL Off-By-One HTAccess Buffer Overflow Vulnerability
Monkey HTTP Daemon directory traversal
Monkey HTTP Daemon POST buffer overflow
Monkey HTTP Daemon URL cross-site scripting
MP3Mystic 1.04 Directory Traversal
MS Commerce Server ISAPI BOF Variation Vulnerability
MS Frontpage htimage.exe Multiple Vulnerabilities
MS01-004 Malformed .HTR Request - NT4
MS01-004 Malformed .HTR Request - NT5
MS01-023 IIS5 IPP ISAPI overflow - NT5
MS01-044 IIS multiple vulnerabilities
MSADC - Samples
MSADC - ShowCode
Multiple Vendor WEB-INF Directory Contents Disclosure
Multiple Vulnerabilities in Lotus Domino WebServer
Multiple Vulnerabilities in WebLogic
Myriad Escaped Characters - NT4
Myriad Escaped Characters - NT5
NCSA 1.3 overflow
Netscape Enterprise 3.6 Basic Authentication Buffer Overflow
Netscape Enterprise 3.6 GET buffer overflow
Netscape Enterprise Server Directory Indexing Vulnerability
Netscape Enterprise Server PageServices Information Disclosure
NetServe Web Server Directory Traversal
network_query.php shell execute vulnerability
Novell Netware Novonyx env.pl Sample Disclosure
Novell Netware Novonyx websinfo.bas Sample Disclosure
Novell Netware snoop.jsp Information Disclosure
Novell Netware viewcode.jse Source Code Disclosure
Novell Netware webacc Cross-Site Scripting
Novell Netware WebAccessUninstall.ini Information Disclosure
NT IIS Unicode Vulnerability
OmniHTTPd file source disclosure vulnerability
OmniHTTPd long HTTP version buffer overflow
OmniHTTPd long POST buffer overflow vulnerability
OpenSSL 0.9.7 Double-Free Buffer Overflow
OpenSSL ASCII Integer Representation Vulnerability
OpenSSL ASN.1 Parsing Error Denial Of Service Vulnerability
OpenSSL CBC encryption timing attack vulnerability
OpenSSL Kerberos Enabled SSLv3 Key Exchange Vulnerability
OpenSSL PRNG weakness
OpenSSL SSLv2 Malformed Client Key Remote Buffer Overflow
Oracle HTTP Server isqlplus Cross-Site Scripting
Oracle MODPL/SQL Directory Traversal/Buffer Overflow
PeopleSoft PeopleTools SchedulerTransfer
Perl Web Server 0.3 Directory Traversal
PhoneBook Service Buffer Overflow - NT4
PhoneBook Service Buffer Overflow - NT5
PHP Post File Upload Buffer Overflow Vulnerability
Pi3Web directory listing vulnerability
Pi3Web long CGI request buffer overflow
Pi3Web web root physical path disclosure
RFPoison Remote DoS Attack - NT4
Rit Labs TinyWeb DoS
Roxen 2-0-46
Roxen 2-0-50
Roxen 2-0-52
Roxen 2-0-66
Savant 3.0 Webserver Buffer Overflow
Savant Web Server 3.1 long GET buffer overflow
Savant Web Server CGI source code disclosure
Savant Web Server directory traversal
Savant Web Server file disclosure vulnerability
Savant Web Server header field buffer overflow
Savant Web Server long GET buffer overflow
Scripts Directory Readable
Sedum 2.0 directory traversal
Session ID Cookie Marking - NT4
Session ID Cookie Marking - NT5
sh-httpd Character Filtering Information Disclosure
Simple Web Server directory traversal
Simple Web Server stack corruption vulnerability
SlimServe HTTPd 1.0 DoS
Software602 web server GET overflow
SSL Update - NT4
Surfboard httpd Multiple Vulnerabilities
SuSE 6.4 Apache WebDAV Directory Listings
thttpd 2.19-20 directory traversal
thttpd Defang Function Buffer Overflow
thttpd if-modified-since overflow
TinyServer v1.1 Multiple Vulnerabilities
Tornado www-server 1.2 Buffer Overflow
Tornado www-server 1.2 Directory Traversal
Trend Micro OfficeScan cgi usage
Trend Micro OfficeScan Config File Disclosure
Undelimited HTR Request - NT4
Undelimited HTR Request - NT5
Viking Web Server 1.07 directory traversal
Virtual Directory Naming Vuln - NT4
Web Server 4D/eCommerce 3.5.3 Buffer Overflow
Web Server 4D/eCommerce 3.5.3 Directory Traversal
Web Server File Request Parsing - NT4
Web Server Folder Traversal - NT4
WEBactive path traversal
WEBactive v1.00
WebDAV enabled
WebDAV Service Provider Vulnerability
WebReflex 1.55 GET overflow
Website Pro 2.4 Path Disclosure
WebXQ 1.204 directory traversal attack
ZBServer Pro long GET buffer overflow
ZBServer Pro source disclosure vulnerability
Zeus CGI Source View
Zeus Possible root compromise
Zope 2.1.7 Content View
Zope 2.6.2 Multiple Vulnerabilities
Zope DHTML Editing Attack
Zope Role Access Attack

Wireless

Cisco 1200 Wireless Access Point detected
D-Link DL-614 Wireless Access Point detected
Linksys BEFW11P1 Wireless Access Point detected
Linksys BEFW11P1 Wireless Access Point detected
Linksys WAP11 Wireless Access Point detected
Microsoft MN-500 Wireless Base Station Detected
Netgear MR314 Wireless Access Point detected

 

Click here for comparison overview and prices

 

Important information:

Please check our security/confidentiality statement and FAQ's.