[prev in list] [next in list] [prev in thread] [next in thread]
List: nessus
Subject: New Nessus HTML Reports
From: William Heinbockel <wjh3710 () osfmail ! isc ! rit ! edu>
Date: 2003-01-31 21:38:09
[Download RAW message or body]
Through the past couple of weeks, I have been adding information
to the base Nessus report...
To further enhance the reports, I am asking for feedback from the
Nessus community. I have attached an example of one of my new
HTML reports.
Would you rather have me replace some of the old formats?
or would you rather add my reports in addition to the old formats?
You can find that report, along with an HTML report from Nessus 1.3.1
at my webpage: http://www.rit.edu/~wjh3710/nessus.html
** I will be releasing an alpha copy of my enhanced Nessus next week **
----------------------
William Heinbockel
Information Security Incident Response Assistant
Co-op Risk & Safety Management
Rochester Institute of Technology
E-mail: wjh3710@rit.edu
["testing.html" (TEXT/html)]
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML>
<HEAD>
<TITLE>Nessus Scan Report</TITLE>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<style type="text/css">
<!--
BODY {
BACKGROUND-COLOR: #ffffff
}
A { TEXT-DECORATION: none }
A:visited { COLOR: #0000cf; TEXT-DECORATION: none }
A:link { COLOR: #0000cf; TEXT-DECORATION: none }
A:active { COLOR: #0000cf; TEXT-DECORATION: underline }
A:hover { COLOR: #0000cf; TEXT-DECORATION: underline }
OL { COLOR: #333333; FONT-FAMILY: tahoma,helvetica,sans-serif }
UL { COLOR: #333333; FONT-FAMILY: tahoma,helvetica,sans-serif }
P { COLOR: #333333; FONT-FAMILY: tahoma,helvetica,sans-serif }
BODY { COLOR: #333333; FONT-FAMILY: tahoma,helvetica,sans-serif }
TD { COLOR: #333333; FONT-FAMILY: tahoma,helvetica,sans-serif }
TR { COLOR: #333333; FONT-FAMILY: tahoma,helvetica,sans-serif }
TH { COLOR: #333333; FONT-FAMILY: tahoma,helvetica,sans-serif }
FONT.title { BACKGROUND-COLOR: white; COLOR: #363636; FONT-FAMILY: \
tahoma,helvetica,verdana,lucida console,utopia; FONT-SIZE: 10pt; FONT-WEIGHT: bold } \
FONT.sub { BACKGROUND-COLOR: white; COLOR: #000000; FONT-FAMILY: \
tahoma,helvetica,verdana,lucida console,utopia; FONT-SIZE: 10pt } FONT.layer \
{ COLOR: #ff0000; FONT-FAMILY: courrier,sans-serif,arial,helvetica; FONT-SIZE: 8pt; \
TEXT-ALIGN: left } TD.title { BACKGROUND-COLOR: #A2B5CD; COLOR: #555555; \
FONT-FAMILY: tahoma,helvetica,verdana,lucida console,utopia; \
FONT-SIZE: 10pt; FONT-WEIGHT: bold; HEIGHT: 20px; TEXT-ALIGN: right } TD.sub \
{ BACKGROUND-COLOR: #DCDCDC; COLOR: #555555; FONT-FAMILY: \
tahoma,helvetica,verdana,lucida console,utopia; FONT-SIZE: 10pt; FONT-WEIGHT: bold; \
HEIGHT: 18px; TEXT-ALIGN: left } TD.content { BACKGROUND-COLOR: white; COLOR: \
#000000; FONT-FAMILY: tahoma,arial,helvetica,verdana,lucida \
console,utopia; FONT-SIZE: 8pt; TEXT-ALIGN: left; VERTICAL-ALIGN: middle } \
TD.default { BACKGROUND-COLOR: WHITE; COLOR: #000000; FONT-FAMILY: \
tahoma,arial,helvetica,verdana,lucida console,utopia; FONT-SIZE: 8pt; } TD.border \
{ BACKGROUND-COLOR: #cccccc; COLOR: black; FONT-FAMILY: \
tahoma,helvetica,verdana,lucida console,utopia; FONT-SIZE: 10pt; HEIGHT: 25px } \
TD.border-HILIGHT { BACKGROUND-COLOR: #ffffcc; COLOR: black; FONT-FAMILY: \
verdana,arial,helvetica,lucida console,utopia; FONT-SIZE: 10pt; \
HEIGHT: 25px }
-->
</style>
</HEAD>
<BODY>
<table bgcolor="#a1a1a1" border=0 cellpadding=0 cellspacing=0 width="95%">
<tbody>
<tr><td>
<table border=0 cellpadding=2 cellspacing=1 width="100%">
<tbody>
<tr>
<td class=title>Nessus Scan Report</td></tr>
<tr>
<td class=content>This report gives details on hosts that were tested
and issues that were found. Please follow the recommended
steps and procedures to eradicate these threats.
</td></tr></tbody></table></td></tr></tbody></table><br>
<table bgcolor="#a1a1a1" border=0 cellpadding=0 cellspacing=0 width="60%">
<tbody><tr><td>
<table border=0 cellpadding=2 cellspacing=1 width="100%">
<tbody>
<tr>
<td class=title colspan=2><b>Scan Details</b></td></tr>
<tr>
<td class=sub width="60%">Hosts which where alive and responding during test</td>
<td class=default width="30%">1</td></tr>
<tr>
<td class=sub width="60%">Number of tests run</td>
<td class=default width="30%">987</td></tr>
<tr>
<td class=sub width="60%">Number of vulnerabilities found</td>
<td class=default width="30%">15</td></tr>
<tr>
<td class=sub colspan=2><b>Comments</b></td></tr>
<tr>
<td class=default colspan=2>::USER COMMENTS::</td></tr>
</tbody></table></td></tr></tbody></table><br>
<a name="toc"></a><table bgcolor="#a1a1a1" border=0 cellpadding=0 cellspacing=0 \
width="60%"> <tbody><tr><td>
<table border=0 cellpadding=2 cellspacing=1 width="100%">
<tbody>
<tr>
<td class=title colspan=2><b>Host List</b></td></tr>
<tr>
<td class=sub width="50%">Host IP</td>
<td class=sub width="50%">DNS Name</td></tr>
<tr>
<td class=default width="50%"><a href="#000.000.000.000">000.000.000.000</a></td>
<td class=default width="50%">yourDNS.domain.com</td></tr>
</tbody></table></td></tr></tbody></table>
<a name="000.000.000.000"></a>
<a name="000.000.000.000_toc"></a>
<div align="left"><font size=-2><a href="#toc">[ return to top \
]</a></font></div><br><br> <table bgcolor="#a1a1a1" border=0 cellpadding=0 \
cellspacing=0 width="60%"> <tbody><tr><td>
<table cellpadding=2 cellspacing=1 border=0 width="100%">
<tbody>
<tr>
<td class=title colspan=2><b>Summary of 000.000.000.000</b></td></tr>
<tr>
<td class=sub width="60%">Number of Tests Scheduled:</td>
<td class=default width"40%">987</td></tr>
<tr>
<td class=sub width="60%">Number of Vulnerabilities found:</td>
<td class=default width"40%">15</td></tr>
<tr>
<td class=sub width="60%">Number of Tests Not Run Due to Failed Dependencies:</td>
<td class=default width"40%">821</td></tr>
<tr>
<td class=sub width="60%">Scan Time:</td>
<td class=default width"40%">00:01:35</td></tr>
</tbody></table></td></tr></tbody></table><br><br>
<table bgcolor="#a1a1a1" border=0 cellpadding=0 cellspacing=0 width="60%">
<tbody><tr><td>
<table cellpadding=2 cellspacing=1 border=0 width="100%">
<tbody>
<tr>
<td class=title colspan=3><b>Analysis of Host</b></td></tr>
<tr>
<td class=sub width="35%">Address of Host</td>
<td class=sub width="35%">Port/Service</td>
<td class=sub width="30%">Risk Level</td></tr>
<tr>
<td class=default width="20%">000.000.000.000</td>
<td class=default width="30%"><a href="#000.000.000.000_22_tcp">ssh \
(22/tcp)</a></td> <td class=default width="30%"><font \
color=slategray><i>Unidentified</i></font></td></tr> <tr>
<td class=default width="20%">000.000.000.000</td>
<td class=default width="30%"><a href="#000.000.000.000_111_tcp">sunrpc \
(111/tcp)</a></td> <td class=default width="30%"><font \
color=slategray><i>Unidentified</i></font></td></tr> <tr>
<td class=default width="20%">000.000.000.000</td>
<td class=default width="30%">printer (515/tcp)</td>
<td class=default width="30%">No Information</td></tr>
<tr>
<td class=default width="20%">000.000.000.000</td>
<td class=default width="30%"><a href="#000.000.000.000_1024_tcp">kdm \
(1024/tcp)</a></td> <td class=default width="30%"><font \
color=slategray><i>Unidentified</i></font></td></tr> <tr>
<td class=default width="20%">000.000.000.000</td>
<td class=default width="30%"><a href="#000.000.000.000_1241_tcp">msg \
(1241/tcp)</a></td> <td class=default width="30%"><font \
color=slategray><i>Unidentified</i></font></td></tr> <tr>
<td class=default width="20%">000.000.000.000</td>
<td class=default width="30%"><a href="#000.000.000.000_6000_tcp">x11 \
(6000/tcp)</a></td> <td class=default width="30%"><font \
color=limegreen>Low</font></td></tr> <tr>
<td class=default width="20%">000.000.000.000</td>
<td class=default width="30%"><a \
href="#000.000.000.000_general_tcp">general/tcp</a></td> <td class=default \
width="30%"><font color=slategray><i>Unidentified</i></font></td></tr> <tr>
<td class=default width="20%">000.000.000.000</td>
<td class=default width="30%"><a href="#000.000.000.000_111_udp">sunrpc \
(111/udp)</a></td> <td class=default width="30%"><font \
color=slategray><i>Unidentified</i></font></td></tr> <tr>
<td class=default width="20%">000.000.000.000</td>
<td class=default width="30%"><a href="#000.000.000.000_1024_udp">unknown \
(1024/udp)</a></td> <td class=default width="30%"><font \
color=gold>High</font></td></tr> </tbody></table></td></tr></tbody></table><br><br>
<table bgcolor="#a1a1a1" cellpadding=0 cellspacing=0 border=0 width="75%">
<tbody><tr><td>
<table cellpadding=2 cellspacing=1 border=0 width="100%">
<tr><td class=title colspan=3><b>Security Issues and Fixes: \
000.000.000.000</b></td></tr> </table></td></tr></tbody></table>
<table bgcolor="#a1a1a1" cellpadding=0 cellspacing=0 border=1 width="75%">
<tbody><tr><td>
<tr>
<td class=sub width="50%">Name</td>
<td class=sub width="20%">Port</td>
<td class=sub width="30%">Risk</td></tr>
<tr><td valign=top class=default width="50%">Services</td>
<td valign=top class=default width="20%"><a name="000.000.000.000_22_tcp"></a>ssh \
(22/tcp)</td> <td valign=top class=default width="30%"><font \
color=slategray><i>Unidentified</i></font></td></tr> <tr><td class=sub \
colspan=3>Description</td></tr> <tr><td class=default colspan=3>An ssh server is \
running on this port </td></tr> <tr><td class=sub>Nessus ID</td>
<td class=default colspan=2><a \
href="http://cgi.nessus.org/nessus_id.php3?id=10330">10330</a></td></tr> \
</td></tr></tbody></table><br>
<table bgcolor="#a1a1a1" cellpadding=0 cellspacing=0 border=1 width="75%">
<tbody><tr><td>
<tr>
<td class=sub width="50%">Name</td>
<td class=sub width="20%">Port</td>
<td class=sub width="30%">Risk</td></tr>
<tr><td valign=top class=default width="50%">SSH Server type and version</td>
<td valign=top class=default width="20%"><a name="000.000.000.000_22_tcp"></a>ssh \
(22/tcp)</td> <td valign=top class=default width="30%"><font \
color=slategray><i>Unidentified</i></font></td></tr> <tr><td class=sub \
colspan=3>Description</td></tr> <tr><td class=default colspan=3>Remote SSH version : \
SSH-2.0-OpenSSH_3.4p1 </td></tr> <tr><td class=sub>Nessus ID</td>
<td class=default colspan=2><a \
href="http://cgi.nessus.org/nessus_id.php3?id=10267">10267</a></td></tr> \
</td></tr></tbody></table><br>
<table bgcolor="#a1a1a1" cellpadding=0 cellspacing=0 border=1 width="75%">
<tbody><tr><td>
<tr>
<td class=sub width="50%">Name</td>
<td class=sub width="20%">Port</td>
<td class=sub width="30%">Risk</td></tr>
<tr><td valign=top class=default width="50%">SSH protocol versions supported</td>
<td valign=top class=default width="20%"><a name="000.000.000.000_22_tcp"></a>ssh \
(22/tcp)</td> <td valign=top class=default width="30%"><font \
color=slategray><i>Unidentified</i></font></td></tr> <tr><td class=sub \
colspan=3>Description</td></tr> <tr><td class=default colspan=3>The remote SSH \
daemon supports the following versions of the<br> SSH protocol :<br>
<br>
. 1.99<br>
. 2.0 </td></tr>
<tr><td class=sub>Nessus ID</td>
<td class=default colspan=2><a \
href="http://cgi.nessus.org/nessus_id.php3?id=10881">10881</a></td></tr> \
</td></tr></tbody></table><br>
<table bgcolor="#a1a1a1" cellpadding=0 cellspacing=0 border=1 width="75%">
<tbody><tr><td>
<tr>
<td class=sub width="50%">Name</td>
<td class=sub width="20%">Port</td>
<td class=sub width="30%">Risk</td></tr>
<tr><td valign=top class=default width="50%">rpcinfo -p</td>
<td valign=top class=default width="20%"><a \
name="000.000.000.000_111_tcp"></a>sunrpc (111/tcp)</td> <td valign=top \
class=default width="30%"><font color=slategray><i>Unidentified</i></font></td></tr> \
<tr><td class=sub colspan=3>Description</td></tr> <tr><td class=default \
colspan=3>RPC program #100000 version 2 'portmapper' (portmapper 100000 portmap \
sunrpc rpcbind<br> ) is running on this port </td></tr>
<tr><td class=sub>Nessus ID</td>
<td class=default colspan=2><a \
href="http://cgi.nessus.org/nessus_id.php3?id=11111">11111</a></td></tr> \
</td></tr></tbody></table><br>
<table bgcolor="#a1a1a1" cellpadding=0 cellspacing=0 border=1 width="75%">
<tbody><tr><td>
<tr>
<td class=sub width="50%">Name</td>
<td class=sub width="20%">Port</td>
<td class=sub width="30%">Risk</td></tr>
<tr><td valign=top class=default width="50%">rpcinfo -p</td>
<td valign=top class=default width="20%"><a name="000.000.000.000_1024_tcp"></a>kdm \
(1024/tcp)</td> <td valign=top class=default width="30%"><font \
color=slategray><i>Unidentified</i></font></td></tr> <tr><td class=sub \
colspan=3>Description</td></tr> <tr><td class=default colspan=3>RPC program #100024 \
version 1 'status' (status 100024<br> ) is running on this port </td></tr>
<tr><td class=sub>Nessus ID</td>
<td class=default colspan=2><a \
href="http://cgi.nessus.org/nessus_id.php3?id=11111">11111</a></td></tr> \
</td></tr></tbody></table><br>
<table bgcolor="#a1a1a1" cellpadding=0 cellspacing=0 border=1 width="75%">
<tbody><tr><td>
<tr>
<td class=sub width="50%">Name</td>
<td class=sub width="20%">Port</td>
<td class=sub width="30%">Risk</td></tr>
<tr><td valign=top class=default width="50%">A Nessus Daemon is running</td>
<td valign=top class=default width="20%"><a name="000.000.000.000_1241_tcp"></a>msg \
(1241/tcp)</td> <td valign=top class=default width="30%"><font \
color=slategray><i>Unidentified</i></font></td></tr> <tr><td class=sub \
colspan=3>Description</td></tr> <tr><td class=default colspan=3>A Nessus Daemon \
listens on this port.<br> supported versions: < NTP/1.0 >< NTP/1.1 >< \
NTP/1.2 > </td></tr> <tr><td class=sub>Nessus ID</td>
<td class=default colspan=2><a \
href="http://cgi.nessus.org/nessus_id.php3?id=10147">10147</a></td></tr> \
</td></tr></tbody></table><br>
<table bgcolor="#a1a1a1" cellpadding=0 cellspacing=0 border=1 width="75%">
<tbody><tr><td>
<tr>
<td class=sub width="50%">Name</td>
<td class=sub width="20%">Port</td>
<td class=sub width="30%">Risk</td></tr>
<tr><td valign=top class=default width="50%">Services</td>
<td valign=top class=default width="20%"><a name="000.000.000.000_1241_tcp"></a>msg \
(1241/tcp)</td> <td valign=top class=default width="30%"><font \
color=slategray><i>Unidentified</i></font></td></tr> <tr><td class=sub \
colspan=3>Description</td></tr> <tr><td class=default colspan=3>A TLSv1 server \
answered on this port </td></tr> <tr><td class=sub>Nessus ID</td>
<td class=default colspan=2><a \
href="http://cgi.nessus.org/nessus_id.php3?id=10330">10330</a></td></tr> \
</td></tr></tbody></table><br>
<table bgcolor="#a1a1a1" cellpadding=0 cellspacing=0 border=1 width="75%">
<tbody><tr><td>
<tr>
<td class=sub width="50%">Name</td>
<td class=sub width="20%">Port</td>
<td class=sub width="30%">Risk</td></tr>
<tr><td valign=top class=default width="50%">SSL ciphers</td>
<td valign=top class=default width="20%"><a name="000.000.000.000_1241_tcp"></a>msg \
(1241/tcp)</td> <td valign=top class=default width="30%"><font \
color=slategray><i>Unidentified</i></font></td></tr> <tr><td class=sub \
colspan=3>Description</td></tr> <tr><td class=default colspan=3>Here is the TLSv1 \
server certificate:<br> Certificate:<br>
Data:<br>
<snip> Nessus Server Certificate Removed <snip>
<tr><td class=sub>Nessus ID</td>
<td class=default colspan=2><a \
href="http://cgi.nessus.org/nessus_id.php3?id=10863">10863</a></td></tr> \
</td></tr></tbody></table><br>
<table bgcolor="#a1a1a1" cellpadding=0 cellspacing=0 border=1 width="75%">
<tbody><tr><td>
<tr>
<td class=sub width="50%">Name</td>
<td class=sub width="20%">Port</td>
<td class=sub width="30%">Risk</td></tr>
<tr><td valign=top class=default width="50%">SSL ciphers</td>
<td valign=top class=default width="20%"><a name="000.000.000.000_1241_tcp"></a>msg \
(1241/tcp)</td> <td valign=top class=default width="30%"><font \
color=slategray><i>Unidentified</i></font></td></tr> <tr><td class=sub \
colspan=3>Description</td></tr> <tr><td class=default colspan=3>This TLSv1 server \
does not accept SSLv2 connections.<br> This TLSv1 server does not accept SSLv3 \
connections. </td></tr> <tr><td class=sub>Nessus ID</td>
<td class=default colspan=2><a \
href="http://cgi.nessus.org/nessus_id.php3?id=10863">10863</a></td></tr> \
</td></tr></tbody></table><br>
<table bgcolor="#a1a1a1" cellpadding=0 cellspacing=0 border=1 width="75%">
<tbody><tr><td>
<tr>
<td class=sub width="50%">Name</td>
<td class=sub width="20%">Port</td>
<td class=sub width="30%">Risk</td></tr>
<tr><td valign=top class=default width="50%">X Server</td>
<td valign=top class=default width="20%"><a name="000.000.000.000_6000_tcp"></a>x11 \
(6000/tcp)</td> <td valign=top class=default width="30%"><font \
color=limegreen>Low</font></td></tr> <tr><td class=sub \
colspan=3>Description</td></tr> <tr><td class=default colspan=3>This X server does \
*not* allow any client to connect to it<br> however it is recommended that you filter \
incoming connections<br> to this port as attacker may send garbage data and slow \
down<br> your X session or even kill the server.<br>
<br>
Here is the server version : 11.0<br>
Here is the message we received : No protocol specified </td></tr>
<tr><td class=sub colspan=3>Fix</td></tr>
<tr><td class=default colspan=3>Filter incoming connections to ports 6000-6009<br>
</td></tr>
<tr><td class=sub>Nessus ID</td>
<td class=default colspan=2><a \
href="http://cgi.nessus.org/nessus_id.php3?id=10407">10407</a></td></tr> <tr><td \
class=sub>CVE ID</td> <td class=default colspan=2><a \
href="http://cgi.nessus.org/cve.php3?cve=CVE-1999-0526">CVE-1999-0526</a></td></tr> \
</td></tr></tbody></table><br>
<table bgcolor="#a1a1a1" cellpadding=0 cellspacing=0 border=1 width="75%">
<tbody><tr><td>
<tr>
<td class=sub width="50%">Name</td>
<td class=sub width="20%">Port</td>
<td class=sub width="30%">Risk</td></tr>
<tr><td valign=top class=default width="50%">(null)</td>
<td valign=top class=default width="20%"><a \
name="000.000.000.000_general_tcp"></a>general/tcp</td> <td valign=top class=default \
width="30%"><font color=slategray><i>Unidentified</i></font></td></tr> <tr><td \
class=sub colspan=3>Description</td></tr> <tr><td class=default colspan=3>Nmap found \
that this host is running Linux Kernel 2.4.0 - 2.5.20, Linux 2.5.25 or Gentoo 1.2 \
Linux 2.4.19 rc1-rc7) </td></tr> <tr><td class=sub>Nessus ID</td>
<td class=default colspan=2><a \
href="http://cgi.nessus.org/nessus_id.php3?id=10336">10336</a></td></tr> \
</td></tr></tbody></table><br>
<table bgcolor="#a1a1a1" cellpadding=0 cellspacing=0 border=1 width="75%">
<tbody><tr><td>
<tr>
<td class=sub width="50%">Name</td>
<td class=sub width="20%">Port</td>
<td class=sub width="30%">Risk</td></tr>
<tr><td valign=top class=default width="50%">rpcinfo -p</td>
<td valign=top class=default width="20%"><a \
name="000.000.000.000_111_udp"></a>sunrpc (111/udp)</td> <td valign=top \
class=default width="30%"><font color=slategray><i>Unidentified</i></font></td></tr> \
<tr><td class=sub colspan=3>Description</td></tr> <tr><td class=default \
colspan=3>RPC program #100000 version 2 'portmapper' (portmapper 100000 portmap \
sunrpc rpcbind<br> ) is running on this port </td></tr>
<tr><td class=sub>Nessus ID</td>
<td class=default colspan=2><a \
href="http://cgi.nessus.org/nessus_id.php3?id=11111">11111</a></td></tr> \
</td></tr></tbody></table><br>
<table bgcolor="#a1a1a1" cellpadding=0 cellspacing=0 border=1 width="75%">
<tbody><tr><td>
<tr>
<td class=sub width="50%">Name</td>
<td class=sub width="20%">Port</td>
<td class=sub width="30%">Risk</td></tr>
<tr><td valign=top class=default width="50%">format string attack against \
statd</td> <td valign=top class=default width="20%"><a \
name="000.000.000.000_1024_udp"></a>unknown (1024/udp)</td> <td valign=top \
class=default width="30%"><font color=gold>High</font></td></tr> <tr><td class=sub \
colspan=3>Description</td></tr> <tr><td class=default colspan=3>The remote statd \
service may be vulnerable<br> to a format string attack.<br>
<br>
This means that an attacker may execute arbitrary<br>
code thanks to a bug in this daemon.<br>
<br>
*** Nessus reports this vulnerability using only<br>
*** information that was gathered. Use caution<br>
*** when testing without safe checks enabled. </td></tr>
<tr><td class=sub colspan=3>Fix</td></tr>
<tr><td class=default colspan=3>Upgrade to the latest version of rpc.statd<br>
</td></tr>
<tr><td class=sub>Nessus ID</td>
<td class=default colspan=2><a \
href="http://cgi.nessus.org/nessus_id.php3?id=10544">10544</a></td></tr> <tr><td \
class=sub>CVE ID</td> <td class=default colspan=2><a \
href="http://cgi.nessus.org/cve.php3?cve=CVE-2000-0666">CVE-2000-0666</a></td></tr> \
</td></tr></tbody></table><br>
<table bgcolor="#a1a1a1" cellpadding=0 cellspacing=0 border=1 width="75%">
<tbody><tr><td>
<tr>
<td class=sub width="50%">Name</td>
<td class=sub width="20%">Port</td>
<td class=sub width="30%">Risk</td></tr>
<tr><td valign=top class=default width="50%">statd service</td>
<td valign=top class=default width="20%"><a \
name="000.000.000.000_1024_udp"></a>unknown (1024/udp)</td> <td valign=top \
class=default width="30%"><font color=gold>High</font></td></tr> <tr><td class=sub \
colspan=3>Description</td></tr> <tr><td class=default colspan=3>The statd RPC \
service is running. <br> This service has a long history of <br>
security holes, so you should really<br>
know what you are doing if you decide<br>
to let it run.<br>
<br>
* NO SECURITY HOLES REGARDING THIS<br>
PROGRAM HAVE BEEN TESTED, SO<br>
THIS MIGHT BE A FALSE POSITIVE *<br>
<br>
We suggest that you disable this<br>
service. </td></tr>
<tr><td class=sub>Nessus ID</td>
<td class=default colspan=2><a \
href="http://cgi.nessus.org/nessus_id.php3?id=10235">10235</a></td></tr> <tr><td \
class=sub>CVE ID</td> <td class=default colspan=2><a \
href="http://cgi.nessus.org/cve.php3?cve=CVE-1999-0493">CVE-1999-0493</a></td></tr> \
</td></tr></tbody></table><br>
<table bgcolor="#a1a1a1" cellpadding=0 cellspacing=0 border=1 width="75%">
<tbody><tr><td>
<tr>
<td class=sub width="50%">Name</td>
<td class=sub width="20%">Port</td>
<td class=sub width="30%">Risk</td></tr>
<tr><td valign=top class=default width="50%">rpcinfo -p</td>
<td valign=top class=default width="20%"><a \
name="000.000.000.000_1024_udp"></a>unknown (1024/udp)</td> <td valign=top \
class=default width="30%"><font color=slategray><i>Unidentified</i></font></td></tr> \
<tr><td class=sub colspan=3>Description</td></tr> <tr><td class=default \
colspan=3>RPC program #100024 version 1 'status' (status 100024<br> ) is running on \
this port </td></tr> <tr><td class=sub>Nessus ID</td>
<td class=default colspan=2><a \
href="http://cgi.nessus.org/nessus_id.php3?id=11111">11111</a></td></tr> \
</td></tr></tbody></table><br> <br>
<hr>
<i>This file was generated by <a href="http://www.nessus.org">Nessus</a>, the \
open-sourced security scanner.</i> <br> <i>Report created on: Fri Jan 31 15:56:55 \
2003 </i>
</BODY>
</HTML>
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic