The hosts listed below were scanned for
7723 security vulnerabilities covering thousands of commerical
and open source products. For help interpreting the results, see
Navigating SecureSite™ Reports
available at http://www.alertra.com/securesite-help.php.
|
No information about this port. |
|
No information about this port. |
|
No information about this port. |
|
Note
|
Remote telnet banner :
Red Hat Linux release 9 (Shrike)
Kernel 2.4.20-8 on an i686
login:
Nessus : 10281
|
|
Note
|
The Telnet service is running.
This service is dangerous in the sense that it is not ciphered - that is,
everyone can sniff the data that passes between the telnet client
and the telnet server. This includes logins and passwords.
Solution:
If you are running a Unix-type system, OpenSSH can be used instead of telnet.
For Unix systems, you can comment out the 'telnet' line in /etc/inetd.conf.
For Unix systems which use xinetd, you will need to modify the telnet services
file in the /etc/xinetd.d folder. After making any changes to xinetd or
inetd configuration files, you must restart the service in order for the
changes to take affect.
In addition, many different router and switch manufacturers support SSH as a
telnet replacement. You should contact your vendor for a solution which uses
an encrypted session.
Risk factor : Low (?)
CVE : CAN-1999-0619
Nessus : 10280
|
|
Note
|
A telnet server seems to be running on this port
Nessus : 10330
|
|
No information about this port. |
|
No information about this port. |
|
Warning
|
The remote SSH daemon supports connections made
using the version 1.33 and/or 1.5 of the SSH protocol.
These protocols are not completely cryptographically
safe so they should not be used.
Solution :
If you use OpenSSH, set the option 'Protocol' to '2'
If you use SSH.com's set the option 'Ssh1Compatibility' to 'no'
Risk factor : Low (?)
Nessus : 10882
|
|
Note
|
The remote SSH daemon supports the following versions of the
SSH protocol :
. 1.33
. 1.5
. 1.99
. 2.0
SSHv1 host key fingerprint : 8a:d5:64:ab:39:67:3a:c6:13:3a:07:a6:c4:2c:27:3c
SSHv2 host key fingerprint : d6:d6:ed:b2:66:a9:c7:5c:cf:00:97:cd:03:5a:73:15
Nessus : 10881
|
|
Warning
|
You are running OpenSSH-portable 3.6.1 or older.
There is a flaw in this version which may allow an attacker to
bypass the access controls set by the administrator of this server.
OpenSSH features a mechanism which can restrict the list of
hosts a given user can log from by specifying a pattern
in the user key file (ie: *.mynetwork.com would let a user
connect only from the local network).
However there is a flaw in the way OpenSSH does reverse DNS lookups.
If an attacker configures his DNS server to send a numeric IP address
when a reverse lookup is performed, he may be able to circumvent
this mechanism.
Solution : Upgrade to OpenSSH 3.6.2 when it comes out
Risk factor : Low (?)
CVE : CAN-2003-0386
BID : 7831
Nessus : 11712
|
Hole
|
You are running a version of OpenSSH which is older than 3.7.1
Versions older than 3.7.1 are vulnerable to a flaw in the buffer management
functions which might allow an attacker to execute arbitrary commands on this
host.
An exploit for this issue is rumored to exist.
Note that several distribution patched this hole without changing
the version number of OpenSSH. Since Nessus solely relied on the
banner of the remote SSH server to perform this check, this might
be a false positive.
If you are running a RedHat host, make sure that the command :
rpm -q openssh-server
Returns :
openssh-server-3.1p1-13 (RedHat 7.x)
openssh-server-3.4p1-7 (RedHat 8.0)
openssh-server-3.5p1-11 (RedHat 9)
Solution : Upgrade to OpenSSH 3.7.1
See also : http://marc.theaimsgroup.com/?l=openbsd-misc&m=106375452423794&w=2
http://marc.theaimsgroup.com/?l=openbsd-misc&m=106375456923804&w=2
Risk factor : High (?)
CVE : CAN-2003-0682, CAN-2003-0693, CAN-2003-0695
BID : 8628
Other references : RHSA:RHSA-2003:279, SuSE:SUSE-SA:2003:039
Nessus : 11837
|
|
Note
|
Remote SSH version : SSH-1.99-OpenSSH_3.5p1
Remote SSH supported authentication : publickey,password,keyboard-interactive
Nessus : 10267
|
|
Note
|
It was possible to log into the remote host using the supplied password
The output of "uname -a" is :
Linux server40 2.4.20-8 #1 Thu Mar 13 17:54:28 EST 2003 i686 i686 i386 GNU/Linux
The remote Linux distribution is not supported, therefore local security checks
have not been enabled
Nessus : 12634
|
|
Note
|
An ssh server is running on this port
Nessus : 10330
|
|
|
Hole
|
There may be buffer overflow in the remote cgi win-c-sample.exe.
An attacker may use this flaw to execute arbitrary commands
on this host.
*** Nessus reports this vulnerability using only
*** information that was gathered. Use caution
*** when testing without safe checks enabled.
Solution : delete it
Risk factor : High (?)
CVE : CVE-1999-0178
BID : 2078
Nessus : 10008
|
|
Hole
|
The 'webdist.cgi' cgi is installed. This CGI has
a well known security flaw that lets anyone execute arbitrary
commands with the privileges of the http daemon (root or nobody).
*** Nessus reports this vulnerability using only
*** information that was gathered. Use caution
*** when testing without safe checks enabled.
Solution : remove it from /cgi-bin.
Risk factor : High (?)
CVE : CVE-1999-0039
BID : 374
Nessus : 10299
|
|
Hole
|
admin.cgi was detected on this server.
Shoutcast server installs a version that is vulnerable to
a buffer overflow.
** Note that Nessus did not try to exploit the flaw,
** so this might be a false alert.
Solution : upgrade Shoutcast to the latest version.
Risk factor : High (?)
CVE : CAN-2002-0199
BID : 3934
Nessus : 11719
|
|
Hole
|
The CGI /pbserver/pbserver.dll is subject to a buffer
overflow attack that allows an attacker to execute
arbitrary commands on this host.
*** Nessus reports this vulnerability using only
*** information that was gathered. Use caution
*** when testing without safe checks enabled.
Solution : See http://www.microsoft.com/technet/security/bulletin/ms00-094.mspx
Risk factor : High (?)
CVE : CVE-2000-1089
BID : 2048
Nessus : 10564
|
|
Warning
|
Sunsolve CD CGI scripts does not validate user input.
Crackers may use them to execute some commands on your system.
** Note: Nessus did not try to perform the attack.
Risk factor : High (?)
CVE : CAN-2002-0436
BID : 4269
Nessus : 11066
|
|
Hole
|
It was possible to read the content of /EXT.INI
(BadBlue configuration file) by sending an invalid GET request.
A cracker may exploit this vulnerability to steal the passwords.
Solution : upgrade your software or protect it with a filtering reverse proxy
Risk factor : High (?)
CVE : CAN-2002-1021
BID : 5226
Nessus : 11064
|
|
Warning
|
The rpm_query CGI is installed.
This CGI allows anyone who can connect to this
web server to obtain the list of the installed
RPMs.
This allows an attacker to determine the version
number of your installed services, hence making
their attacks more accurate.
Solution : remove this CGI from cgi-bin/
Risk factor : Low (?)
CVE : CVE-2000-0192
BID : 1036
Nessus : 10340
|
|
Hole
|
The 'nph-publish.cgi' is installed. This CGI has
a well known security flaw that lets an attacker to execute arbitrary
commands with the privileges of the http daemon (usually root or nobody).
Solution : remove it from /cgi-bin.
Risk factor : High (?)
CVE : CVE-1999-1177, CAN-2001-0400
BID : 2563
Nessus : 10164
|
|
Hole
|
The foxweb.dll or foxweb.exe CGI is installed.
Versions 2.5 and below of this CGI program have a security flaw
that lets an attacker execute arbitrary code on the remote server.
** Since Nessus just verified the presence of the CGI but could
** not check the version number, this might be a false alarm.
Solution : remove it from /cgi-bin or upgrade it
Risk factor : High (?)
Nessus : 11939
|
|
Hole
|
The 'get32.exe' CGI script is installed on this
machine. This CGI has a well known security flaw that allows an
attacker to execute arbitrary commands on the remote system with
the privileges of the HTTP daemon (typically root or nobody).
Solution : Remove the 'get32.exe' script from your web server's
CGI directory (usually cgi-bin/)..
Risk factor : High (?)
CVE : CAN-1999-0885
BID : 770
Nessus : 10011
|
|
Hole
|
alya.cgi is a cgi backdoor distributed with
multiple rootkits.
Risk factor : High (?)
Nessus : 11118
|
|
Hole
|
The CGI /scripts/tools/newdsn.exe is present.
This CGI allows any attacker to create files
anywhere on your system if your NTFS permissions
are not tight enough, and can be used to overwrite
DSNs of existing databases.
Solution : Remove newdsn.exe
Risk factor : High (?)
CVE : CVE-1999-0191
BID : 1818
Nessus : 10360
|
|
Warning
|
The 'finger' cgi is installed. It is usually
not a good idea to have such a service installed, since
it usually gives more troubles than anything else.
Double check that you really want to have this
service installed.
Solution : remove it from /cgi-bin.
Risk factor : High (?)
Nessus : 10071
|
|
Hole
|
The 'websendmail' CGI is installed. This CGI has
a well known security flaw that lets an attacker execute arbitrary
commands with the privileges of the http daemon (usually root or nobody).
Solution : Remove it from /cgi-bin.
Risk factor : High (?)
CVE : CVE-1999-0196
BID : 2077
Nessus : 10301
|
|
Hole
|
The 'guestbook.cgi' is installed. This CGI has
a well known security flaw that lets anyone execute arbitrary
commands with the privileges of the http daemon (root or nobody).
Solution : remove it from /cgi-bin.
Risk factor : High (?)
CVE : CVE-1999-0237
BID : 776
Nessus : 10098
|
|
Hole
|
It is possible to read the include file of PCCS-Mysql,
dbconnect.inc on the remote server.
This include file contains information such as the
username and password used to connect to the database.
Solution:
Versions 1.2.5 and later are not vulnerable to this issue.
A workaround is to restrict access to the .inc file.
Risk factor : High (?)
CVE : CVE-2000-0707
BID : 1557
Nessus : 10783
|
|
Hole
|
It is possible to read
any file on the remote system by prepending
several dots before the file name.
Example :
GET ........../config.sys
Solution : Disable this service and install
a real Web Server.
Risk factor : High (?)
CVE : CVE-1999-0386
Nessus : 10142
|
|
Warning
|
The 'PGPMail.pl' CGI is installed.
Some versions (up to v1.31 a least) of this CGI do not
properly filter user input before using it inside commands.
This would allow a cracker to run any command on your server.
*** Note: Nessus just checked the presence of this CGI
*** but did not try to exploit the flaws.
Solution : remove it from /cgi-bin or upgrade it.
Reference : http://online.securityfocus.com/archive/82/243262
Reference : http://online.securityfocus.com/archive/1/243408
Risk factor : High (?)
CVE : CAN-2001-0937
BID : 3605
Nessus : 11070
|
|
Hole
|
The 'windmail.exe' CGI is installed.
Some versions of this CGI script have a security flaw that lets
an attacker execute arbitrary commands on the remote server.
To test this, make the following request :
GET /cgi-bin/windmail.exe?-n%20c:\boot.ini%20you@youraddress.com
(replace you@youraddress.com by your real email address).
If you receive the content of the file boot.ini,
then your server is vulnerable.
Solution : remove it from /cgi-bin. See www.geocel.com
for a new version.
Risk factor : High (?)
CVE : CAN-2000-0242
BID : 1073
Nessus : 10365
|
|
Warning
|
The 'vpasswd.cgi' CGI is installed. Some versions
do not properly check for special characters and allow
a cracker to execute any command on your system.
*** Warning : Nessus solely relied on the presence of this CGI, it did not
*** determine if you specific version is vulnerable to that problem
Solution : remove it from /cgi-bin.
Risk factor : High (?)
BID : 6038
Nessus : 11165
|
|
Hole
|
The 'Perl' CGI is installed and can be launched
as a CGI. This is equivalent to giving a free shell to an attacker, with the
http server privileges (usually root or nobody).
Solution : remove it from /cgi-bin
Risk factor : High (?)
CVE : CAN-1999-0509
Nessus : 10173
|
|
Hole
|
RedHat Linux 6.0 installs by default a squid cache manager cgi script with
no restricted access permissions. This script could be used to perform a
port scan from the cgi-host machine.
Solution :
If you are not using the box as a Squid www proxy/cache server then
uninstall the package by executing:
/etc/rc.d/init.d/squid stop
rpm -e squid
If you want to continue using the Squid proxy server software, make the
following actions to tighten security access to the manager interface:
mkdir /home/httpd/protected-cgi-bin
mv /home/httpd/cgi-bin/cachemgr.cgi /home/httpd/protected-cgi-bin/
And add the following directives to /etc/httpd/conf/access.conf and
srm.conf:
--- start access.conf segment ---
# Protected cgi-bin directory for programs that
# should not have public access
order deny,allow
deny from all
allow from localhost
#allow from .your_domain.com
AllowOverride None
Options ExecCGI
--- end access.conf segment ---
--- start srm.conf segment ---
ScriptAlias /protected-cgi-bin/ /home/httpd/protected-cgi-bin/
--- end srm.conf segment ---
Risk factor : High (?)
CVE : CVE-1999-0710
BID : 2059
Nessus : 10034
|
|
Hole
|
The CGI 'AnyForm2' is installed.
Old versions of this CGI have a well known security flaw that lets
anyone execute arbitrary commands with the privileges of the http daemon
(root or nobody).
Solution : remove it.
Risk factor : High (?)
CVE : CVE-1999-0066
BID : 719
Nessus : 10277
|
|
Warning
|
The 'webdriver' cgi is installed. This CGI usually
lets anyone access the Informix databases of the hosts that run it.
*** Warning : Nessus solely relied on the presence of this CGI, it did not
*** determine if you specific version is vulnerable to that problem
Solution : remove it from /cgi-bin.
Risk factor : High (?)
BID : 2166
Nessus : 10592
|
|
Warning
|
The remote web server appears to be running with
Frontpage extensions and lets the file 'authors.pwd'
to be downloaded by everyone.
This is a security concern since this file contains
sensitive data.
Solution : Contact Microsoft for a fix.
Risk factor : Medium (?)
Nessus : 10078
|
|
Hole
|
At least one of these file or directories is
world readable :
/webcart/orders/
/webcart/orders/import.txt
/webcart/carts/
/webcart/config/
/webcart/config/clients.txt
/webcart-lite/orders/import.txt
/webcart-lite/config/clients.txt
This misconfiguration may allow an attacker to gather
the credit card numbers of your clients.
Solution : Do not make directories world readable.
Risk factor : High (?)
CVE : CAN-1999-0610
BID : 2281
Nessus : 10298
|
|
Hole
|
/cgi-bin/.cobalt/overflow/overflow.cgi was detected.
Some versions of this CGI allow remote users to execute arbitrary commands
with the privileges of the web server.
*** Nessus just checked the presence of this file
*** but did not try to exploit the flaw, so this might
*** be a false positive
See: http://www.cert.org/advisories/CA-2002-35.html
Solution : get a newer software from Cobalt
Risk factor : High (?)
Nessus : 11190
|
|
Warning
|
The CGI script ppdscgi.exe, part of the PowerPlay
Web Edition package, is installed.
Due to design problems as well as some
potential web server misconfiguration
PowerPlay Web Edition may serve up data
cubes in a non-secure manner. Execution
of the PowerPlay CGI pulls cube data into
files in an unprotected temporary directory.
Those files are then fed back to frames in
the browser. In some cases it is trivial for an
unauthenticated user to tap into those data
files before they are purged.
Solution : Cognos doesn't consider this
problem as being an issue, so they
do not provide any solution.
Risk factor : Medium (?)
BID : 491
Nessus : 10187
|
|
Hole
|
The 'plusmail' CGI is installed. Some
versions of this CGI have a well known security flaw that
lets an attacker read arbitrary
file with the privileges of the http daemon
(usually root or nobody).
Solution : remove it from /cgi-bin. No patch yet
Risk factor : High (?)
CVE : CAN-2000-0074
BID : 2653
Nessus : 10181
|
|
Hole
|
The 'glimpse' cgi is installed. This CGI has
a well known security flaw that lets anyone execute arbitrary
commands with the privileges of the http daemon (root or nobody).
Note that we could not actually check for the presence
of this vulnerability, so you may be using a patched
version.
Solution : remove it from /cgi-bin.
Risk factor : High (?)
CVE : CVE-1999-0147
BID : 2026
Nessus : 10095
|
|
Hole
|
The CGI 'viralator.cgi' is installed.
Some versions of this CGI are don't check properly the user
input and allow anyone to execute arbitrary commands with
the privileges of the web server
** No flaw was tested. Your script might be a safe version.
Solutions : Upgrade this script to version 0.9pre2 or newer
Risk factor : High (?)
CVE : CAN-2001-0849
BID : 3495
Nessus : 11107
|
|
Warning
|
The '_maincfgret' cgi is installed.
Some versions were vulnerable to a buffer overflow.
** This might be a false positive, no attack was performed
** and the version was not checked
http://www.idefense.com/application/poi/display?id=142&type=vulnerabilities
http://www.packetstormsecurity.org/0408-advisories/08.25.04.txt
Solution : upgrade to Whatsup Gold 8.03 HF 1 if needed
Risk factor : High (?)
CVE : CAN-2004-0798
BID : 11043
Nessus : 15564
|
|
Hole
|
The Excite for Webservers is installed. This CGI has
a well known security flaw that lets anyone execute arbitrary
commands with the privileges of the http daemon (root or nobody).
Versions newer than 1.1. are patched.
Solution : if you are running version 1.1 or older, then
upgrade it.
Risk factor : High (?)
CVE : CVE-1999-0279
BID : 2248
Nessus : 10064
|
|
Warning
|
The 'wrap' CGI is installed. This CGI allows
anyone to get a listing for any directory with mode +755.
*** Note that all implementations of 'wrap' are not
*** vulnerable. See the relevant CVE entry.
Solution : remove it from /cgi-bin.
Risk factor : Low (?)
CVE : CVE-1999-0149
BID : 373
Nessus : 10317
|
|
Hole
|
The script /cart/cart.cgi is present.
If this shopping cart system is the Dansie
Shopping Cart, and if it is older than version 3.0.8
then it is very likely that it contains a backdoor
which allows anyone to execute arbitrary commands on this system.
Solution : use another cart system
Risk factor : High (?)
CVE : CVE-2000-0252
BID : 1115
Nessus : 10368
|
|
Hole
|
The 'campas' cgi is installed. This CGI has
a well known security flaw that lets anyone execute arbitrary
commands with the privileges of the http daemon (root or nobody).
Solution : remove it from /cgi-bin.
Risk factor : High (?)
CVE : CVE-1999-0146
BID : 1975
Nessus : 10035
|
|
Hole
|
The 'jj' CGI is installed. This CGI has
a well known security flaw that lets an attacker execute arbitrary
commands with the privileges of the http daemon (usually root or nobody).
Solution : Remove it from /cgi-bin.
Risk factor : High (?)
CVE : CVE-1999-0260
BID : 2002
Nessus : 10131
|
|
Hole
|
mt-load.cgi is installed by the Movable Type Publishing
Platform.
Failure to remove mt-load.cgi could enable someone else to create
a weblog in your Movable Type installation, and possibly gain access to
your data.
Solution: Remove the mt-load.cgi script after installation.
Risk factor : High (?)
Nessus : 16169
|
|
Warning
|
The 'cgi.rb' CGI is installed. Some versions is vulnerable to
remote denial of service.
By sending a specially crafted HTTP POST request, a malicious user can force
the remote host to consume a large amount of CPU ressources.
*** Warning : Nessus solely relied on the presence of this CGI, it did not
*** determine if you specific version is vulnerable to that problem
Solution : Verify that your version is at least 1.8.1 or later
Risk factor : High (?)
CVE : CAN-2004-0983
Nessus : 15710
|
|
Hole
|
The 'uploader.exe' CGI is installed. This CGI has
a well known security flaw that lets anyone upload arbitrary
CGI on the server, and then execute them.
Solution : remove it from /cgi-win.
Risk factor : High (?)
CVE : CVE-1999-0177
Nessus : 10291
|
|
Warning
|
'cgiwrap' is installed. If you are running an unpatched Cobalt RaQ,
the version of cgiwrap distributed with that system has a known
security flaw that lets anyone execute arbitrary
commands with the privileges of the http daemon (root or nobody).
This flaw exists only on the Cobalt modified cgiwrap. Standard builds
of cgiwrap are not affected.
Solution : upgrade your Cobalt RaQ to apply fix
Risk factor : Medium (?)
CVE : CVE-1999-1530, CVE-2000-0431
BID : 1238, 777
Nessus : 10041
|
|
Warning
|
webadmin.dll was found on your web server.
Old versions of this CGI suffered from numerous problems:
- installation path disclosure
- directory traversal, allowing anybody with
administrative permission on WebAdmin to read any file
- buffer overflow, allowing anybody to run arbitrary code on
your server with SYSTEM privileges.
*** Note that no attack was performed, and the version number was
*** not checked, so this might be a false alert
Solution : Upgrade to the latest version if necessary
Risk factor : High (?)
CVE : CAN-2003-0471
BID : 7438, 7439, 8024
Nessus : 11771
|
|
Warning
|
The 'processit' CGI is installed.
processit normally returns all environment variables.
This gives an attacker valuable information about the
configuration of your web server.
Solution : Remove it from /cgi-bin.
Risk factor : Medium (?)
Nessus : 10649
|
|
Warning
|
The 'ibillpm.pl' CGI is installed.
Some versions of this CGI use a weak password management system
that can be brute-forced.
** No flaw was tested. Your script might be a safe version.
Solutions : upgrade the script if possible. If not:
1) Move the script elsewhere (security through obscurity)
2) Request that iBill fix it.
3) Configure your web server so that only addreses from ibill.com
may access it.
Risk factor : Low (?)
BID : 3476
Nessus : 11083
|
|
Warning
|
/mt/mt.cfg is installed by the Movable Type Publishing
Platform and contains information that should not be exposed.
Solution: Configure your web server not to serve .cfg files.
Risk factor : Low (?)
Nessus : 16170
|
|
Hole
|
The Cobalt 'siteUserMod' CGI is installed.
Older versions of this CGI allow any user to change the
administrator password.
Make sure you are running the latest version.
Solution :
RaQ 1 Users, download :
ftp://ftp.cobaltnet.com/
pub/experimental/security/siteUserMod/RaQ1-Security-3.6.pkg
RaQ 2 Users, download :
ftp://ftp.cobaltnet.com/
pub/experimental/security/siteUserMod/RaQ2-Security-2.94.pkg
RaQ 3 Users, download :
ftp://ftp.cobaltnet.com/
pub/experimental/security/siteUserMod/RaQ3-Security-2.2.pkg
Risk factor : High (?)
CVE : CVE-2000-0117
BID : 951
Nessus : 10253
|
|
Warning
|
The cgi 'dumpenv.pl' is installed. This
CGI gives away too much information about the web server
configuration, which will help an attacker.
Solution : remove it from /cgi-bin.
Risk factor : Low (?)
CVE : CAN-1999-1178
Nessus : 10060
|
|
Warning
|
The 'nph-test-cgi' CGI is installed. This CGI has
a well known security flaw that lets an attacker get a listing
of the /cgi-bin directory, thus discovering which CGIs are installed
on the remote host.
Solution : remove it from /cgi-bin.
Risk factor : High (?)
CVE : CVE-1999-0045
BID : 686
Nessus : 10165
|
|
Warning
|
Your website allows read access to the CVS/Entries file.
This exposes all file names in your CVS module on your website.
Solution: Change your website permissions to deny access to your
CVS directory. Entries contains the following:
<!doctype html public "-//W3C//DTD HTML 3.2 Final//EN">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html
Charset=iso-8859-1">
<link rel='icon' href='/images/webmin_icon.png' type='image/png'>
<title></title>
</head>
<body bgcolor=#6696bc link=#000000 vlink=#000000 text=#000000 leftmargin="0"
topmargin="0" marginwidth="0" marginheight="0"
onLoad='document.forms[0].pass.value = ""
document.forms[0].user.focus()'><table width="100%" border="0" cellspacing="0"
cellpadding="0" background="/unauthenticated/nav/bottom_shadow.jpg">
<tr>
<td width="100%" nowrap><img src="/unauthenticated/nav/bottom_shadow.jpg"
width="43" height="9"></td>
</tr>
</table><br><hr>
<center>
<form action=/session_login.cgi method=post>
<input type=hidden name=page value='/CVS/Entries'>
<table border width=40%>
<tr bgcolor=#7f7f7f> <td><b>Login to Webmin</b></td> </tr>
<tr bgcolor=#b7b7b7> <td align=center><table cellpadding=3>
<tr> <td colspan=2 align=center>You must enter a username and password to login
to the Webmin server on <tt>server40</tt>.</td> </tr>
<tr> <td><b>Username</b></td>
<td><input name=user size=20 value=''></td> </tr>
<tr> <td><b>Password</b></td>
<td><input name=pass size=20 type=password></td> </tr>
<tr> <td colspan=2 align=center><input type=submit value='Login'>
<input type=reset value='Clear'><br>
<input type=checkbox name=save value=1> Remember login permanently?
</td> </tr>
</table></td></tr></table><p>
<hr>
</form></center>
<table border=0 width=100% align=center cellspacing=0 cellpadding=0
bgcolor=#6696bc><tr><td>
</td></tr></table>
<br>
</body></html>
Nessus : 10922
|
|
Warning
|
Carello.dll was found on your web server.
Versions up to 1.3 of this web shopping cart allowed anybody
to run arbitrary commands on your server.
*** Note that no attack was performed, and the version number was
*** not checked, so this might be a false alert
Solution : Upgrade to the latest version if necessary
Risk factor : High (?)
Nessus : 11776
|
|
Warning
|
The 'mailnews' cgi is installed. This CGI has
a well known security flaw that lets an attacker execute arbitrary
commands with the privileges of the http daemon (usually root or nobody).
Solution : remove it from /cgi-bin.
Risk factor : High (?)
CVE : CAN-2001-0271
BID : 2391
Nessus : 10641
|
|
Warning
|
The 'printenv' CGI is installed.
printenv normally returns all environment variables.
This gives an attacker valuable information about the
configuration of your web server.
Solution : Remove it from /cgi-bin.
Risk factor : Medium (?)
Nessus : 10188
|
|
Hole
|
Cross site scripting, buffer overflow and remote command
execution on QuickTime/Darwin Streaming Administration
Server.
This is due to parsing problems with per script:
parse_xml.cgi.
The worst of these vulnerabilities allows for remote
command execution usually as root or administrator.
These servers are installed by default on port 1220.
See:
http://www.atstake.com/research/advisories/2003/a022403-1.txt
Solution: Obtain a patch or new software from Apple or
block this port (TCP 1220) from internet access.
*** Nessus reports this vulnerability using only
*** information that was gathered. Only the existance
*** of the potentially vulnerable cgi script was tested.
Risk factor : High (?)
CVE : CAN-2003-0050, CAN-2003-0051, CAN-2003-0052, CAN-2003-0053,
CAN-2003-0054, CAN-2003-0055
BID : 6954, 6955, 6956, 6957, 6958, 6960, 6990
Nessus : 11278
|
|
Hole
|
The remote HTTP server
allows an attacker to read arbitrary files
on the remote web server, simply by adding
dots in front of its name.
Example:
GET /../../winnt/boot.ini
will return your C:\winnt\boot.ini file.
Solution : Upgrade your web server to a
version that solves this vulnerability, or
consider changing to another web server, such
as Apache (http://www.apache.org).
Risk factor : High (?)
CVE : CAN-1999-0776
BID : 270
Nessus : 10010
|
|
Hole
|
The 'guestbook.pl' is installed. This CGI has
a well known security flaw that lets anyone execute arbitrary
commands with the privileges of the http daemon (root or nobody).
Solution : remove it from /cgi-bin.
Risk factor : High (?)
CVE : CAN-1999-1053
BID : 776
Nessus : 10099
|
|
Hole
|
The 'webgais' CGI is installed. This CGI has
a well known security flaw that lets an attacker execute arbitrary
commands with the privileges of the http daemon (usually root or nobody).
Solution : remove it from /cgi-bin
Risk factor : High (?)
CVE : CVE-1999-0176
BID : 2058
Nessus : 10300
|
|
Hole
|
It may be possible for an attacker to reconfigure the
remote web server by requesting :
GET /scripts/wsisa.dll/WService=anything?WSMadmin
Solution : Edit the ubroker.properties file and change
AllowMsngrCmds = 1
to :
AllowMsngrCmds = 0
Risk factor : High (?)
CVE : CVE-2000-0127
BID : 969
Nessus : 10304
|
|
Note
|
A web server is running on this port
Nessus : 10330
|
|
|
Hole
|
The remote sendmail server, according to its version number,
may be vulnerable to a remote buffer overflow allowing remote
users to gain root privileges.
Sendmail versions from 5.79 to 8.12.9 are vulnerable.
Solution : Upgrade to Sendmail ver 8.12.10.
See also :
http://lists.netsys.com/pipermail/full-disclosure/2003-September/010287.html
NOTE: manual patches do not change the version numbers.
Vendors who have released patched versions of sendmail
may still falsely show vulnerability.
*** Nessus reports this vulnerability using only
*** the banner of the remote SMTP server. Therefore,
*** this might be a false positive.
Risk factor : High (?)
CVE : CAN-2003-0681, CAN-2003-0694
BID : 8641, 8649
Other references : RHSA:RHSA-2003:283-01, SuSE:SUSE-SA:2003:040
Nessus : 11838
|
|
Note
|
This server could be fingerprinted as being Sendmail 8.11.2
Nessus : 11421
|
|
Hole
|
The remote sendmail server, according to its version number,
may be vulnerable to a remote buffer overflow allowing remote
users to gain root privileges.
Sendmail versions from 5.79 to 8.12.8 are vulnerable.
Solution : Upgrade to Sendmail ver 8.12.9 or greater or
if you cannot upgrade, apply patches for 8.10-12 here:
http://www.sendmail.org/patchps.html
NOTE: manual patches do not change the version numbers.
Vendors who have released patched versions of sendmail
may still falsely show vulnerability.
*** Nessus reports this vulnerability using only
*** the banner of the remote SMTP server. Therefore,
*** this might be a false positive.
Risk factor : High (?)
CVE : CAN-2003-0161
BID : 7230
Other references : RHSA:RHSA-2003:120-01
Nessus : 11499
|
|
Note
|
Remote SMTP server banner :
220 server40.alertra.com ESMTP Sendmail 8.12.8/8.12.8
Mon, 9 May 2005 15:17:44 -0500
This is probably: Sendmail version 8.12.8
Nessus : 10263
|
|
Note
|
An SMTP server is running on this port
Here is its banner :
220 server40.alertra.com ESMTP Sendmail 8.12.8/8.12.8
Mon, 9 May 2005 15:17:19 -0500
Nessus : 10330
|
|
|
Note
|
The remote POP3 servers leak information about the software it is running,
through the login banner. This may assist an attacker in choosing an attack
strategy.
Versions and types should be omitted where possible.
The version of the remote POP3 server is :
+OK server40 v2001.78rh server ready
Solution : Change the login banner to something generic.
Risk factor : Low (?)
Nessus : 10185
|
|
Note
|
A pop3 server is running on this port
Nessus : 10330
|
|
No information about this port. |
|
|
Note
|
An unknown service is running on this port.
It is usually reserved for MySQL
Nessus : 10330
|
|
|
Note
|
Here is the SSLv3 server certificate:
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 0 (0x0)
Signature Algorithm: md5WithRSAEncryption
Issuer: C=--, ST=SomeState, L=SomeCity, O=SomeOrganization,
OU=SomeOrganizationalUnit,
CN=localhost.localdomain/emailAddress=root@localhost.localdomain
Validity
Not Before: Jul 24 18:39:53 2002 GMT
Not After : Jul 24 18:39:53 2003 GMT
Subject: C=--, ST=SomeState, L=SomeCity, O=SomeOrganization,
OU=SomeOrganizationalUnit,
CN=localhost.localdomain/emailAddress=root@localhost.localdomain
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public Key: (1024 bit)
Modulus (1024 bit):
00:b7:46:f6:1f:76:8a:b2:ec:18:6c:1f:6f:a6:fb:
8a:36:84:df:19:7e:e4:c0:ae:74:83:7a:23:6e:77:
86:17:c8:e1:a1:8c:f0:de:fa:82:3c:eb:07:df:fa:
e9:e8:7e:c0:e5:66:7f:f2:c3:c7:38:8d:65:26:93:
aa:47:0f:6d:75:69:8f:b8:f5:e0:00:f9:f3:4f:da:
c9:27:80:29:51:95:5a:00:40:76:6c:11:6c:74:0c:
8f:9f:87:f3:41:3c:59:03:f7:b1:8a:a1:19:0b:b7:
e0:49:2b:96:d1:1d:27:27:3a:92:cc:c6:7e:66:27:
dd:d6:fa:67:8f:f1:7f:0f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:68:3C:69:DB:98:C6:F3:0A:D0:A7:2B:E6:B9:50:0F:53:C4:70:39
X509v3 Authority Key Identifier:
keyid:1F:68:3C:69:DB:98:C6:F3:0A:D0:A7:2B:E6:B9:50:0F:53:C4:70:39
DirName:/C=--/ST=SomeState/L=SomeCity/O=SomeOrganization/OU=SomeOrganizationalUn
it/CN=localhost.localdomain/emailAddress=root@localhost.localdomain
serial:00
X509v3 Basic Constraints:
CA:TRUE
Signature Algorithm: md5WithRSAEncryption
0c:3d:58:10:d4:61:c4:b1:33:3e:ed:a8:bc:63:1e:2b:90:00:
11:24:84:aa:32:f6:82:1f:5c:05:62:01:89:a4:38:19:b0:07:
2c:b5:e2:ab:70:75:45:07:9f:2e:2c:20:63:39:34:03:a6:59:
f3:8d:67:91:1f:93:db:8d:d2:9b:74:ba:ae:0b:59:c2:a6:61:
57:36:3b:c9:b4:8d:25:e2:b4:aa:a8:58:df:1d:ec:c3:4d:3e:
32:09:97:6f:44:aa:24:ff:81:19:2e:69:ca:14:69:f4:ef:02:
63:2b:31:5d:dd:43:df:18:d1:64:cb:96:5c:bf:ef:8c:f1:82:
31:f3
This TLSv1 server does not accept SSLv2 connections.
This TLSv1 server also accepts SSLv3 connections.
Nessus : 10863
|
|
Note
|
A web server is running on this port through SSL
Nessus : 10330
|
|
Note
|
A TLSv1 server answered on this port
Nessus : 10330
|
|
No information about this port. |
|
No information about this port. |
|
|
Note
|
The remote imap server banner is :
* OK [CAPABILITY IMAP4REV1 LOGIN-REFERRALS STARTTLS AUTH=LOGIN] server40
IMAP4rev1 2001.315rh at Mon, 9 May 2005 15:17:32 -0500 (CDT)
Versions and types should be omitted where possible.
Change the imap banner to something generic.
Nessus : 11414
|
|
Note
|
An IMAP server is running on this port
Nessus : 10330
|
|
|
Note
|
Here is the SSLv2 server certificate:
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 0 (0x0)
Signature Algorithm: md5WithRSAEncryption
Issuer: C=--, ST=SomeState, L=SomeCity, O=SomeOrganization,
OU=SomeOrganizationalUnit,
CN=localhost.localdomain/emailAddress=root@localhost.localdomain
Validity
Not Before: Feb 8 20:25:45 2004 GMT
Not After : Feb 7 20:25:45 2005 GMT
Subject: C=--, ST=SomeState, L=SomeCity, O=SomeOrganization,
OU=SomeOrganizationalUnit,
CN=localhost.localdomain/emailAddress=root@localhost.localdomain
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public Key: (1024 bit)
Modulus (1024 bit):
00:a6:52:b3:a4:d2:4f:6d:3c:d3:12:28:58:9c:fa:
bc:ec:77:5e:07:ba:2e:ff:e4:e1:93:c6:2a:28:b5:
6d:0f:0d:d0:23:26:82:27:25:d5:f7:58:19:90:3f:
75:71:ac:6b:27:38:13:cd:29:08:9e:75:0e:17:76:
6f:4a:77:ab:96:75:14:04:22:3a:ef:b8:bd:1b:69:
e1:d7:71:e4:a1:d8:3d:8e:23:33:2e:fd:1e:f6:77:
61:8c:f1:e4:39:11:ac:02:ea:41:50:1b:9f:4c:7f:
57:8b:04:b6:ee:dc:37:06:6c:cc:97:8e:a9:82:77:
0a:4e:12:c9:03:76:01:ee:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:03:9C:24:9E:C0:E1:31:DB:A2:C0:2C:D9:D1:1F:9D:B9:D5:3D:83
X509v3 Authority Key Identifier:
keyid:A7:03:9C:24:9E:C0:E1:31:DB:A2:C0:2C:D9:D1:1F:9D:B9:D5:3D:83
DirName:/C=--/ST=SomeState/L=SomeCity/O=SomeOrganization/OU=SomeOrganizationalUn
it/CN=localhost.localdomain/emailAddress=root@localhost.localdomain
serial:00
X509v3 Basic Constraints:
CA:TRUE
Signature Algorithm: md5WithRSAEncryption
29:bd:13:14:27:36:a4:5e:c2:29:23:b5:1f:e9:58:24:43:f2:
81:8b:29:93:b0:fb:98:23:69:c3:fc:72:2f:f6:ee:78:c9:cc:
d6:53:c4:36:53:c2:a4:45:9d:d8:47:71:38:cc:ad:12:4f:f3:
23:fc:a1:91:26:97:a7:73:05:b8:3e:1b:9e:81:a0:bc:eb:be:
dd:42:e9:a4:0a:04:63:cb:9d:f1:6f:31:80:17:09:42:59:77:
24:4d:6d:11:53:be:a2:91:a5:f6:36:6a:1e:d8:bd:c4:38:d3:
d5:b5:4d:91:4a:14:2a:b5:53:6b:32:9a:6d:cb:34:12:ae:cd:
9d:f9
Here is the list of available SSLv2 ciphers:
RC4-MD5
EXP-RC4-MD5
RC2-CBC-MD5
EXP-RC2-CBC-MD5
DES-CBC-MD5
DES-CBC3-MD5
RC4-64-MD5
The SSLv2 server offers 5 strong ciphers, but also
0 medium strength and 2 weak "export class" ciphers.
The weak/medium ciphers may be chosen by an export-grade
or badly configured client software. They only offer a
limited protection against a brute force attack
Solution: disable those ciphers and upgrade your client
software if necessary.
See http://support.microsoft.com/default.aspx?scid=kb
en-us
216482
or http://httpd.apache.org/docs-2.0/mod/mod_ssl.html#sslciphersuite
This SSLv2 server also accepts SSLv3 connections.
This SSLv2 server also accepts TLSv1 connections.
Nessus : 10863
|
|
Note
|
A web server is running on this port through SSL
Nessus : 10330
|
|
Note
|
A SSLv2 server answered on this port
Nessus : 10330
|
|
|
Warning
|
The remote host appears to be running a version of
Apache 2.x which is older than 2.0.46
This version is vulnerable to various flaws :
- There is a denial of service vulnerability which may allow
an attacker to disable basic authentication on this host
- There is a denial of service vulnerability in the mod_dav module
which may allow an attacker to crash this service remotely
Solution : Upgrade to version 2.0.46
See also : http://www.apache.org/dist/httpd/CHANGES_2.0
Risk factor : Medium (?)
CVE : CAN-2003-0245, CAN-2003-0189
BID : 7723, 7725
Other references : RHSA:RHSA-2003:186-01
Nessus : 11665
|
|
Hole
|
The remote host appears to be running a version of
Apache 2.x which is older than 2.0.45
This version is vulnerable to various flaws :
- There is a denial of service attack which may allow
an attacker to disable this server remotely
- The httpd process leaks file descriptors to child processes,
such as CGI scripts. An attacker who has the ability to execute
arbitrary CGI scripts on this server (including PHP code) would
be able to write arbitrary data in the file pointed to (in particular,
the log files)
Solution : Upgrade to version 2.0.45
See also : http://www.apache.org/dist/httpd/CHANGES_2.0
Risk factor : High (?)
CVE : CAN-2003-0132
BID : 7254, 7255
Nessus : 11507
|
|
Warning
|
The remote host appears to be running a version of
Apache 2.x which is older than 2.0.43
This version allows an attacker to view the source code
of CGI scripts via a POST request made to a directory
with both WebDAV and CGI enabled.
*** Note that Nessus solely relied on the version number
*** of the remote server to issue this warning. This might
*** be a false positive
Solution : Upgrade to version 2.0.43
See also : http://www.apache.org/dist/httpd/CHANGES_2.0
Risk factor : Medium (?)
CVE : CAN-2002-1156, CAN-2003-0083
BID : 6065
Nessus : 11408
|
|
Warning
|
The target is running an Apache web server which allows for the
injection of arbitrary escape sequences into its error logs. An
attacker might use this vulnerability in an attempt to exploit similar
vulnerabilities in terminal emulators.
***** Nessus has determined the vulnerability exists only by looking at
***** the Server header returned by the web server running on the target.
Solution : Upgrade to Apache version 1.3.31 or 2.0.49 or newer.
Risk factor : Low (?)
CVE : CAN-2003-0020
BID : 9930
Other references : APPLE-SA:APPLE-SA-2004-05-03, CLSA:CLSA-2004:839,
HPSB:HPSBUX01022, RHSA:RHSA-2003:139-07, RHSA:RHSA-2003:243-07,
MDKSA:MDKSA-2003:050, OpenPKG-SA:OpenPKG-SA-2004.021-apache,
SSA:SSA:2004-133-01, SuSE-SA:SuSE-SA:2004:009, TLSA:TLSA-2004-11,
TSLSA:TSLSA-2004-0017
Nessus : 12239
|
|
Warning
|
Your webserver supports the TRACE and/or TRACK methods. TRACE and TRACK
are HTTP methods which are used to debug web server connections.
It has been shown that servers supporting this method are subject
to cross-site-scripting attacks, dubbed XST for
"Cross-Site-Tracing", when used in conjunction with
various weaknesses in browsers.
An attacker may use this flaw to trick your
legitimate web users to give him their
credentials.
Solution: Disable these methods.
If you are using Apache, add the following lines for each virtual
host in your configuration file :
RewriteEngine on
RewriteCond %{REQUEST_METHOD} ^(TRACE|TRACK)
RewriteRule .* - [F]
If you are using Microsoft IIS, use the URLScan tool to deny HTTP TRACE
requests or to permit only the methods needed to meet site requirements
and policy.
If you are using Sun ONE Web Server releases 6.0 SP2 and later, add the
following to the default object section in obj.conf:
<Client method="TRACE">
AuthTrans fn="set-variable"
remove-headers="transfer-encoding"
set-headers="content-length: -1"
error="501"
</Client>
If you are using Sun ONE Web Server releases 6.0 SP2 or below, compile
the NSAPI plugin located at:
http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F50603
See http://www.whitehatsec.com/press_releases/WH-PR-20030120.pdf
http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0035.html
http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F50603
http://www.kb.cert.org/vuls/id/867593
Risk factor : Medium (?)
BID : 9506, 9561, 11604
Nessus : 11213
|
|
Warning
|
The remote host appears to be running a version of Apache 2.x which is
older than 2.0.50.
There is denial of service in apache httpd 2.0.x by sending a
specially crafted HTTP request. It is possible to consume arbitrary
amount of memory. On 64 bit systems with more than 4GB virtual memory
this may lead to heap based buffer overflow. See also
http://www.guninski.com/httpd1.html
There is also a denial of service vulnerability in mod_ssl's
ssl_io_filter_cleanup function. By sending a request to vulnerable
server over SSL and closing the connection before the server can send
a response, an attacker can cause a memory violation that crashes the
server.
Solution : Upgrade to Apache/2.0.50 or newer
Risk factor : Medium (?)
CVE : CAN-2004-0493
BID : 10619, 12877
Other references : OSVDB:7269
Nessus : 12293
|
|
Hole
|
The remote host is running a version of Apache2 which is older than 2.0.51.
It is reported that versions prior 2.0.51 are prone to a remote denial of
service issue. An attacker may issue a specific sequence of DAV LOCK commands
to crash the process. If Apache is configured to use threads, it may
completely crash the Apache process.
In addition to this, versions prior 2.0.51 are prone to a remote buffer
overflow when parsing an URI sent over IPv6. An attacker may use this flaw
to execute arbitrary code on the remote host or to deny service to legitimate
users.
See also : http://nagoya.apache.org/bugzilla/show_bug.cgi?id=31183
Solution : Upgrade to Apache 2.0.51
Risk factor : High (?)
CVE : CAN-2004-0786, CAN-2004-0747, CAN-2004-0751, CAN-2004-0748, CAN-2004-0809
BID : 11185, 11187
Nessus : 14748
|
|
Warning
|
The remote host appears to be running a version of Apache 2.x which is older
than 2.0.48.
This version is vulnerable to a bug which may allow a rogue CGI to disable
the httpd service by issuing over 4K of data to stderr.
To exploit this flaw, an attacker would need the ability to upload a rogue
CGI script to this server and to have it executed by the Apache daemon (httpd).
Solution : Upgrade to version 2.0.48 when it is available
See also : http://nagoya.apache.org/bugzilla/show_bug.cgi?id=22030
Risk factor : Low (?)
CVE : CVE-2002-0061, CAN-2003-0789, CAN-2003-0542
BID : 8926
Nessus : 11853
|
|
Warning
|
The remote host appears to be running a version of
Apache 2.x which is older than 2.0.47
This version is vulnerable to various flaws which may allow
an attacker to disable this service remotely and/or locally.
Solution : Upgrade to version 2.0.47
See also : http://www.apache.org/dist/httpd/CHANGES_2.0
Risk factor : Medium (?)
CVE : CAN-2003-0192, CAN-2003-0253, CAN-2003-0254
BID : 8134, 8135, 8137, 8138
Other references : RHSA:RHSA-2003:243-01
Nessus : 11788
|
|
Note
|
The remote web server type is :
Apache/2.0.40 (Red Hat Linux)
Solution : You can set the directive 'ServerTokens Prod' to limit
the information emanating from the server in its response headers.
Nessus : 10107
|
|
Note
|
The following directories were discovered:
/cgi-bin, /error, /icons, /manual, /usage
While this is not, in and of itself, a bug, you should manually inspect
these directories to ensure that they are in compliance with company
security standards
The following directories require authentication:
/secure
Other references : OWASP:OWASP-CM-006
Nessus : 11032
|
|
Note
|
A web server is running on this port
Nessus : 10330
|
|
|
Note
|
For your information, here is the traceroute to 192.168.30.40 :
192.168.30.1
192.168.30.40
Nessus : 10287
|
|
|
Note
|
The remote host is running one of these operating systems :
Linux Kernel 2.6
Linux Kernel 2.4
Nessus : 11936
|
|
Note
|
192.168.30.40 resolves as server40.
Nessus : 12053
|
|
Warning
|
The remote host does not discard TCP SYN packets which
have the FIN flag set.
Depending on the kind of firewall you are using, an
attacker may use this flaw to bypass its rules.
See also : http://archives.neohapsis.com/archives/bugtraq/2002-10/0266.html
http://www.kb.cert.org/vuls/id/464113
Solution : Contact your vendor for a patch
Risk factor : Medium (?)
BID : 7487
Nessus : 11618
|
|
|
Note
|
The remote host answers to an ICMP timestamp request. This allows an attacker
to know the date which is set on your machine.
This may help him to defeat all your time based authentication protocols.
Solution : filter out the ICMP timestamp requests (13), and the outgoing ICMP
timestamp replies (14).
Risk factor : Low (?)
CVE : CAN-1999-0524
Nessus : 10114
|
|
|
Warning
|
This FTP service allows anonymous logins. If you do not want to share data
with anyone you do not know, then you should deactivate the anonymous account,
since it may only cause troubles.
The content of the remote FTP root is :
drwxr-xr-x 2 0 0 4096 Aug 30 2004 pub
Risk factor : Low (?)
CVE : CAN-1999-0497
Nessus : 10079
|
|
Note
|
Remote FTP server banner :
220 (vsFTPd 1.1.3)
Nessus : 10092
|
|
Note
|
Remote FTP server banner :
220 (vsFTPd 1.1.3)
Nessus : 10092
|
|
Note
|
An FTP server is running on this port.
Here is its banner :
220 (vsFTPd 1.1.3)
Nessus : 10330
|
|
|
Note
|
The service closed the connection after 0 seconds without sending any data
It might be protected by some TCP wrapper
Nessus : 10330
|
|
|
Note
|
An echo server is running on this port
Nessus : 10330
|
