Yennik, Inc.
R. Kinney Williams
Yennik, Inc.

Medical Records Security
VISTA Penetration Study
Internet security auditing
for hospitals, pharmacies, doctors, health insurance, etc.

Vulnerability list

This is a sample list of some the over 5,000 known vulnerabilities that can negatively affect your IT operation.
 There are about 25 new vulnerabilities added every week.
The page may take a few minutes to load.

Press Ctrl+F to find a particular vulnerability.

Frequently ask questions

For information regarding fees, please call R. Kinney Williams at 800-920-7119
or send him an email at examiner@yennik.com.

Domains:
BACK DOORS AND TROJAN HORSES BRUTE FORCE ATTACK CGI DATABASE DNS AND BIND
E-COMMERCE FILE TRANSFER PROTOCOL FINGER FIREWALL GENERAL REMOTE SERVICES
HARDWARE INFORMATION (NIS, YP, WHOIS) INFORMATION GATHERING MAIL SERVICES NEWS SERVER
NFS PROXY RPC  SMB / NETBIOS SMTP AND MAIL SERVER
SNMP TCP/IP WEB SERVER WINDOWS X-WINDOW


BACK DOORS AND TROJAN HORSES (Return to the top of the page)
Potential Backdoor
"Back Orifice" Backdoor
"GirlFriend" Backdoor
"NetBUS" Backdoor
Potential TCP Backdoor
"Deep Throat" (Version 1) Backdoor
"Deep Throat" (Version 2) Backdoor
"Deep Throat" (Version 3) Backdoor
"Netsphere" Backdoor
"Gatecrasher" Backdoor
"Portal Of Doom" Backdoor
"Evil FTP" Backdoor
"Phase Zero" Backdoor
"Hack'a'Tack" Backdoor
"Subseven" Backdoor
"NetBus" Backdoor
"Kuang2" Backdoor
"Cdk" Backdoor
Remote Shell Trojan
Potential Remote Shell Trojan
Installed Back Orifice 2000
Installed NetBus Pro Server

BRUTE FORCE ATTACK (Return to the top of the page)
FireWall-1 Login Access Enabled
Web server Brute Force Discovery of Unix Account Names Vulnerability
iPlanet Netscape Messaging Server POP E-mail Address Verification Vulnerability
iPlanet Netscape Messaging Server IMAP E-mail Address Verification Vulnerability
CommuniGate Pro E-mail Address Verification Vulnerability
NetBIOS Brute Force of Accounts

CGI (Common Gateway Interface) (Return to the top of the page)
"phf" CGI Vulnerability
"campas" CGI Vulnerability
"Finger" CGI Vulnerability
PHP Buffer Overflow
"htmlscript" CGI Vulnerability
"info2www" CGI Vulnerability
"webdist" CGI Vulnerability
"Faxsurvey" CGI Vulnerability
"Handler" CGI Vulnerability
"Wrap" CGI Vulnerability
"aglimpse" CGI Vulnerability
"websendmail" CGI Vulnerability
"count.cgi" CGI vulnerability
"test-cgi" CGI Vulnerability
"nph-test-cgi" CGI Vulnerability
"webgais" CGI Vulnerability
perl.exe Interpreter Present in CGI Directory
"wwwboard.pl" Multiple CGI Vulnerabilities
"www-sql" CGI Vulnerability
"view-source" CGI Vulnerability
"man.sh" CGI Vulnerability
Excite Web Server 1.1 Present
Script filemail.pl Present
Script maillist.pl Present
"jj" CGI Vulnerability
"files.pl" CGI Vulnerability
"bnbform.cgi" CGI Vulnerability
"survey.cgi" CGI Vulnerability
"Anyform" CGI Vulnerability
"textcounter.pl" CGI Vulnerability
"classifieds.cgi" CGI Vulnerability
environ.cgi Sensitive Information Disclosure
"uploader.exe" CGI Vulnerability
"bdir.htr" CGI Vulnerability
Microsoft IIS 3.0 "newdsn.exe" File Creation Vulnerability
"fpcount.exe" CGI Vulnerability
"search97.vts" CGI Vulnerability
"iCat" Suite 3.0 CGI Vulnerability
"codebrws.asp" CGI Vulnerability
Allaire Macromedia ColdFusion Remote File Display, Deletion, Upload and Execution Vulnerability
Allaire Macromedia ColdFusion "sendmail.cfm" CGI Vulnerability
Allaire Macromedia ColdFusion "mainframeset.cfm" Vulnerability
"ctss.idc" CGI Vulnerability
"search97" CGI Vulnerability
details.idc Sample Script Vulnerability
getdrvrs.exe CGI Denial Of Service Vulnerability
"msadcs.dll" Remote SQL Queries
adctest.asp Remote Command Execution Vulnerability
"showcode.asp" File Viewing CGI Vulnerability
"wais.pl" CGI Vulnerability
PHP/FI mylog/mlog Vulnerability
"whois_raw.cgi" CGI Vulnerability
Solution Scripts Home Free search.cgi Directory Traversal Vulnerability
Progress WebSpeed WSISA Messenger Administration Utility Remote Administration Vulnerability
Microsoft Personal Web Server Directory Traversal Vulnerability
Netscape Enterprise Server "Search" Engine File Viewing Vulnerability
ht://Dig File Inclusion Vulnerability
IRIX 6.5 "infosrch.cgi" CGI Remote Command Execution Vulnerability
Axis Communications Storpoint Passwordless Access Vulnerability
Oracle Web Listener Remote Command Execution Vulnerability
Sojourn Search Engine File Viewing Vulnerability
"rpm_query" Discloses List of RPMs Installed on the System
TalentSoft Web+ CGI Script Arbitrary File Viewing Vulnerability
NewsWeb CGI Buffer Overflow Vulnerability
Default Account in "piranha" Web Interface
Microsoft NT Option Pack 4 Buffer Overflow and File Viewing Vulnerabilities
ht://Dig Search Engine Absolute Path Revealed Vulnerability
Calendar CGI Remote Command Execution Vulnerability
DBMan CGI Environment and Setup Variable Disclosure Vulnerability
Netwinsite DmailWeb CGI Buffer Overflow Vulnerability
FormMail env_report CGI Script Environment Variable Disclosure Vulnerability
Allaire Macromedia ColdFusion Administration Script DoS Vulnerability
L-Soft ListServ Web Archive Buffer Overflow Vulnerability
"allmanage.pl" CGI Vulnerability
PowerScripts Plusmail CGI Remote Command Execution Vulnerability
Microsoft IIS 4.0/5.0 File Source Exposure Vulnerability
Microsoft IIS 4 "iisadmpwd" ".htr" Scripts Vulnerability
PCCS MySQL Database Admin Tool Username/Password Exposure Vulnerability
Netwin Netauth Directory Traversal Vulnerability
PHP Nuke Administrative Privileges Vulnerability
CGI Script Center Account Manager LITE/PRO Administrative Password Alteration Vulnerability
CGI Script Center Subscribe Me LITE Administrative Password Alteration Vulnerability
CGI Script Center Auction Weaver Directory Traversal Vulnerability
GWScripts News Publisher author.file Write Vulnerability
Apache WebDAV Directory Listings Vulnerability
Nathan Purciful phpPhotoAlbum Directory Traversal Vulnerability
YaBB Arbitrary File Read Vulnerability
IMP File Disclosure and Remote Command Execution Vulnerabilities
Mailman 1.1 Writable Variable Vulnerability
Sambar Server (BETA) "Search" CGI Vulnerability
Talentsoft Web+ Source Code Disclosure Vulnerability
Moreover.com Newsfeed "cached_feed" CGI Vulnerability
SCO Unixware "/search97cgi/vtopic" Directory Traversal Vulnerability
SCO UnixWare SCOhelp HTTP Server Format String Vulnerability
Talensoft Web+ Internal IP Address Leakage Vulnerability
Talentsoft Web+ Path Revealing Vulnerability
Mail Form 2.0 XX-attach_file Vulnerability
Microsoft IIS 5.0 Indexed Directory Disclosure Vulnerability
PHPix Directory Traversal Vulnerability
CGI Script Center Auction Weaver File Disclosure Vulnerability
Boa Webserver 0.94.2.x File Disclosure Vulnerability
Oatmeal Studios Mail File Arbitrary File Disclosure Vulnerability
CSM Alibaba Web Server Piped Command Vulnerability
Alibaba Web Server Directory Listing Vulnerability
Microsoft NT Site Server AdSamples Vulnerability
Trend Micro InterScan VirusWall smtpscan.dll Buffer Overflow Vulnerability
Deerfield Website Pro win-c-sample.exe Buffer Overflow
Allaire Macromedia ColdFusion "sourcewindow.cfm" CGI Vulnerability
CVSWeb Write Access and Remote Execution Vulnerability
AnalogX SimpleServer:WWW Directory Traversal Vulnerability
McMurtrey/Whitaker And Associates Cart32 Remote Administration Password Vulnerability
Hassan Consulting Shopping Cart Directory Traversal Vulnerability
Oscar Nierstrasz Htgrep CGI Arbitrary File Viewing Vulnerability
IBM Net.Data db2www CGI program Buffer Overflow Vulnerability
Mobius DocumentDirect for the Internet 1.2 Buffer Overflow Vulnerabilities
Stalkerlab Mailers 1.1.2 CGI Mail Spoofing Vulnerability
Omnicron OmniHTTPd Visiadmin.exe Denial of Service Vulnerability
Microsoft Site Server 2.0 with IIS 4.0 Malicious File Upload Vulnerability
AN-HTTPd CGI Vulnerabilities
Tony Greenwood WebWho+ Remote Command Execution Vulnerability
GeoCel WindMail Remote File Read Vulnerability
eXtropia WebBanner Input Validation Vulnerability
SalesLogix eViewer Denial of Service Vulnerability
George Burgyan CGI Counter Input Validation Vulnerability
Jana Web server Directory Traversal Vulnerability
Allaire Macromedia ColdFusion "cf-syntaxcheck.cfm" CGI Vulnerability
Allaire Macromedia ColdFusion "snippets" CGI Vulnerability
Allaire Macromedia ColdFusion Path Disclosure Vulnerability
Allaire Macromedia ColdFusion Vulnerabilities
Script guestbook.cgi Present
Sun Java Web Server Web Admin/Bullettin Board Vulnerability
Netscape SuiteSpot Read/Writeable Admin Password Vulnerability
BB4 Technologies Big Brother Directory Traversal Vulnerability
O'Reilly WebSite 'webfind.exe' Buffer Overflow Vulnerability
Bajie Web server Absolute Path Disclosure Vulnerability
Bajie Web server File Reading Vulnerability
Webcom CGI Guestbook File Disclosure Vulnerability
IPSwitch WS_FTP Login/Password File Vulnerability
Cognos Powerplay Web Edition Vulnerability
eXtropia Selena Sol's WebStore Order File Disclosure Vulnerability
Merchant OrderForm v1.2 Order File Disclosure Vulnerability
Seaside Enterprises EZMall 2000 Order File Disclosure Vulnerability
PDGSoft's PDG Shopping Cart Order or Configuration File Disclosure Vulnerability
QuikStore Configuration File Disclosure Vulnerability
Mountain Network Systems Inc. Order and Configuration File Disclosure Vulnerability
CGI-World Poll It Internal Variable Override Vulnerability
Flexform CGI script Present
Mathew M. Wright download.cgi File Disclosure Vulnerability
LWGate File Disclosure Vulnerability
MachineInfo Script Information Disclosure
EWS architext_query.pl Script Remote Execution Vulnerability
.wwwacl File Accessible
iisadmin Directory is Present
.htaccess is Accessible
printenv Script
Novell NetWare Web Server convert.bas File Disclosure Vulnerability
nph-publish Script Remote Execution
Hans Wolters phpReview Cross-Site Scripting Vulnerability
SuSE SDB Arbitrary Command Execution Vulnerability
Netscape Servers Suite Heap Buffer Overflow Vulnerability
Metertek Pagelog.cgi File Disclosure/Creation Vulnerability
CGI Script Center News Update Password Changing Vulnerability
CGI Script Center Subscribe Me Lite Account Deletion Vulnerability
YaBB search.pl Arbitrary Command Execution Vulnerability
McMurtrey/Whitaker and Associates Cart32 DoS Vulnerability
Kootenay Web Whois Remote Command Execution Vulnerability
DCScripts DCForum dcboard.cgi Arbitrary File Disclosure Vulnerability
Bill Hendrick gbook.cgi Remote Command Execution Vulnerability
CGIForum Arbitrary File Disclosure Vulnerability
Multiple Vendor BSD Global Port Package CGI Vulnerability
F5 Networks BigIP bigconf CGI File Disclosure Vulnerability
"rwwwshell.cgi" Reverse WWW Tunnel CGI Backdoor Vulnerability
CGI PERL Directory is listable
Potential Misuse of Squid cachemgr.cgi
BB4 Big Brother Multiple CGI Vulnerabilities
"unlg1.1" CGI Backdoor Vulnerability
Excite for Web Servers 1.1 (EWS) CGI Vulnerabilities
Suspicious File Dynamics AXS Script Set
Nlog CGI Multiple Vulnerabilities
Hughes Technologies w3-sql Circumvents .htaccess Protected Directories
Net Administration CGI script set Exploitation
Sambar Server 4.1-beta Script Suspicious File
Shell Interpreter Present in the CGI Directory
Suspicious formail file
Omnicron Technologies OmniHTTPD Buffer Overflow Vulnerability
John Roberts anyform.cgi Remote Execution Vulnerability
Enterasys Network Dragon-Fire IDS Vulnerability
Sambar Server 4.1 Beta dumpenv.pl Absolute Path Revealed
Suspicious Script file.pl
Novell WebServer files.pl File Disclosure Vulnerability
Password File accessible from Web server
GNU Mailman Cross-Site Scripting Vulnerability
Matt Wright FormMail Remote Command Execution Vulnerability
Allaire Spectra 1.0.1 Admin Utility Vulnerability
Network Tool PHPNuke Add-on Meta-character Filtering Command Execution Vulnerability
phpGroupWare Remote Include File Vulnerability
Gallery PHPNuke Add-on Remote File Viewing Vulnerability
PHP Nuke File Copy and Delete Vulnerability
Digex Looking Glass Perl Script Neighbor Information Gathering Vulnerability
Microsoft NT IIS 4 Remote Web-Based Administration Vulnerability
FormHandler.cgi Reply Attachment Vulnerability
Allaire JRun 2.3 File Disclosure Vulnerability
Netscape Enterprise Server Web Publishing Vulnerability
Entrust GetAccess File Disclosure Vulnerability
Viralator CGI Input Validation Remote Shell Command Vulnerability
eXtropia bbs_forum.cgi Remote Arbitrary Command Execution Vulnerability
Form Totaller Arbitrary File Disclosure Vulnerability
Feartech Ftp.pl FTP Directory Listing Vulnerability
Shadow's CGI File Disclosure Vulnerabilities
BigBrother BBD Utility Vulnerability
CGI Script Center Auction Weaver Remote Command Execution Vulnerability
wwwwais.c Heap Overflow Vulnerability
Big Brother Arbitrary Shell Command Execution Vulnerability
Ranson Johnson mailto.cgi Piped Address Vulnerability
e-Zone Media FuseTalk Form Input Validation Vulnerability
Hughes Technologies Mini-SQL w3-msql Buffer Overflow Vulnerabilities
iWeb Hyperseek 2000 Directory Traversal Vulnerability
Ibrow newsdesk.cgi File Disclosure Vulnerablility
PHP/FI Directory Traversal Vulnerability
SilverPlatter WebSPIRS File Disclosure Vulnerability
Sambar Server Admin Access Vulnerability
LB5000 Cookie Input Validation Vulnerability
Mailnews.cgi Username Remote Shell Commands Vulnerability
Bytes Interactive Web Shopper Directory Traversal Vulnerability
Phorum Arbitrary File Read Vulnerability
Ikonboard Cookie Input Validation Vulnerability
Martin Hamilton ROADS File Disclosure Vulnerability
CGI Script Center Auction Weaver Username/Bidfile Directory Traversal/Arbitrary File Deletion Vulnerability
Irix Demo CGI Scripts Vulnerabilities
Brian Stanback bsguest.cgi Remote Command Execution Vulnerability
Brian Stanback bslist.cgi Remote Command Execution Vulnerability
UltraBoard Incorrect Directory Permissions Vulnerability
Adcycle Password Disclosure Vulnerability
Sun Microsystem's Chili!Soft ASP Remote World-Readable System Files Vulnerability
Mailman's administrator can gain access to user passwords
Infopop Ultimate Bulletin Board [IMG] Tag Javascript Embedding Vulnerability
Ikonboard's "help.cgi" allow read access to any file on the system
Ikonboard Arbitrary Command Execution Vulnerability
INDEXU Authentication By-Pass Vulnerability
iBill Management Script Weak Hard-Coded Password Vulnerability
Suspicious file anot3.htr
W3C Amaya Templates Server Directory Traversal Vulnerability
Microburst uStorekeeper Directory Traversal Vulnerability
Matt Wright FormMail Anonymous E-mail/Spamming Vulnerability
Free On-line Dictionary of Computing Remote File Viewing Vulnerability
RedHat Piranha passwd.php3 Arbitrary Command Execution and Plaintext Password Vulnerabilities
Way to the Web TalkBack.cgi Directory Traversal Vulnerability
nph-maillist Arbitrary Code Execution Vulnerability
Trend Micro InterScan VirusWall Multiple Program Buffer Overflow Vulnerability
Trend Micro InterScan VirusWall Default Password Vulnerability
testcgi.exe
Microsoft Frontpage htimage.exe Path Disclosure Vulnerability
Drummon Miles A1Stats Directory Traversal Vulnerability
Mozilla Bugzilla Remote Arbitrary Command Execution Vulnerability
Mozilla Bugzilla Sensitive Information Disclosure Vulnerability
Allaire Forums "rightAccessAllForums" Vulnerability
PHP Nuke Remote Ad Banner URL Change Vulnerability
PHP Nuke User Settings Modification Vulnerability
PHP Nuke Forged User Information Cookie Vulnerability
PHP Nuke Default Administration Password Vulnerability
MIMAnet Source Viewer Directory Traversal Vulnerability
PHProjekt Directory Escaping Vulnerability
Microsoft IIS FrontPage 98 Extensions Buffer Overflow Vulnerability
TWIG Webmail SQL Query Modification Vulnerability
Allaire Macromedia ColdFusion Administration Access Without Authentication
Allaire Macromedia ColdFusion Debug Show Variables Enabled
Matt Kruse Calendar Arbitrary Command Execution Vulnerability
Hot Area Banner Rotation 01 and Dream Catcher Advertiser World-Readable Password Vulnerability
Pacific Software Carello File Duplication and Source Disclosure Vulnerability
Tarantella ttawebtop.cgi Arbitrary File Viewing Vulnerability
Active Classifieds Arbitrary Code Execution Vulnerability
Basilix Webmail File Disclosure Vulnerability
Basilix Webmail Incorrect File Permissions Vulnerability
Trend Micro InterScan WebManager HttpSave.dll Buffer Overflow Vulnerability
Trend Micro InterScan WebManager RegGo.dll Buffer Overflow Vulnerability
IBM WebSphere Application Server multiple path disclosure
SquirrelMail Remote Command Execution Vulnerability
Lilikoi Ceilidh 2.60 Multiple Vulnerabilities
Trend Micro InterScan VirusWall Remote Reconfiguration Vulnerability
Trend Micro InterScan VirusWall Remote Buffer Overflow Vulnerability
Allaire JRun 2.3.x Sample Files Vulnerability
Akopia MiniVend Piped Command Execution Vulnerability
BB4 Big Brother CGI File Creation Vulnerability
PHP-Nuke Remote SQL Query Manipulation Vulnerability
PHP-Nuke Remote SQL Query Manipulation Vulnerability
phpBB Remote SQL Query Manipulation Vulnerability
Apache Tomcat Snoop Servlet Information Disclosure Vulnerability
Apache Tomcat 3.1 Path Revealing Vulnerability
Apache Tomcat /admin Context Vulnerability
NetCode NC Book Book.CGI Arbitrary Command Execution Vulnerability
phpBB Unauthorized Administrative Features Access Vulnerability
Horde IMP Encoded Cross-Site Scripting Vulnerability
Horde IMP Local 'prefs.lang' Vulnerability
Sambar Server pagecount File Overwrite Vulnerability
CGIWrap Cross-Site Scripting Vulnerability
Mambo Site Server Administrator Password Bypass Vulnerability
phpBB Arbitrary Command Execution Vulnerability
Allaire Macromedia ColdFusion Sample Application Command Execution Vulnerability
Trend Micro OfficeScan Arbitrary File Disclosure Vulnerability
PHPProjekt Arbitrary User Modification Vulnerability
Microsoft Frontpage Publishing Denial of Service Vulnerability
Bharat Mediratta Gallery Remote Arbitrary Code Execution Vulnerability
Microsoft Index Server 2.0 File Information and Path Disclosure Vulnerability
PHP Nuke Remote File Copy Vulnerability
Actionpoll Remote Arbitrary Code Execution Vulnerability
Zorbat ZorbStats Remote Arbitrary Code Execution Vulnerability
Dark Hart Portal Remote Arbitrary Code Execution Vulnerability
Trend Micro InterScan eManager Buffer Overflow Vulnerability
AWOL Remote Arbitrary Code Execution Vulnerability
Haakon Nilsen SIPS Remote Arbitrary Code Execution Vulnerability
Tobias Ratschiller phpAdsNew Remote Arbitrary Code Execution Vulnerability
Empris Remote Arbitrary Code Execution Vulnerability
CCC Remote Arbitrary Code Execution Vulnerability
Peaceworks Computer Consulting Phormation Remote Arbitrary Code Execution Vulnerability
ht://Dig Remote Denial of Service/File Disclosure Vulnerability
phpBB 'bb_memberlist.php' Remote SQL Query Manipulation Vulnerability
Sebastian Bunka myphpPagetool Arbitrary Code Execution Vulnerability
Marc Logemann More.groupware Remote Arbitrary Code Execution Vulnerability
Derek Leung pSlash Remote Arbitrary Code Execution Vulnerability
Grant Horwood Webodex Remote Arbitrary Code Execution Vulnerability
Paul M. Jones Phorecast Remote Arbitrary Code Execution Vulnerability
PostNuke Unauthenticated User Login Vulnerability
Thatware Remote Arbitrary Code Execution Vulnerability
phpMyAdmin Included File Arbitrary Command Execution Vulnerability
phpPgAdmin Included File Arbitrary Command Execution Vulnerability
phpSecurePages Included File Arbitrary Command Execution Vulnerability
Ipswitch IMail Server Predictable Session ID Vulnerability
Ipswitch IMail Server Predictable Session ID Vulnerability
Ipswitch IMail Server User Modification Vulnerability
Ipswitch IMail Server Session ID Disclosure Vulnerability
Ipswitch IMail Server Mailbox Denial of Service Vulnerability
Ipswitch IMail Server Web Calendar Buffer Overflow Vulnerability
Ipswitch IMail Server User Mailbox Disclosure Vulnerability
Ipswitch IMail Server User Mailbox Disclosure Vulnerability
Trend Micro OfficeScan Virtual Directory Disclosure Vulnerability
Mountain Network Systems WebCart Command Execution Vulnerability
Network Query Tool Remote Command Execution Vulnerability
Dream Catchers Book of Guests CGI Remote Arbitrary Command Execution Vulnerability
Dream Catchers Post-It! CGI Remote Arbitrary Command Execution Vulnerability
Horde IMP Session Hijacking Vulnerability
ActiveState ActivePerl perlIIS.dll Buffer Overflow Vulnerability
Redhat Stronghold Secure Web Server Information Disclosure Vulnerability
Allaire JRun Web Root Directory Disclosure Vulnerability
Allaire JRun SSI Arbitrary File Source Disclosure Vulnerability
Persits AspUpload Default Scripts Exploitable Vulnerability
TWIG Plaintext Password in Cookies Vulnerability
PostNuke Weak Encryption In User Cookie Vulnerability
PHPNuke Cross-Site Scripting Vulnerability
PostNuke Cross-Site Scripting Vulnerability
Html2Wml Scheme File Arbitrary Access Vulnerability
Brian Dorricott MAILTO Unauthorized Mail Server Use Vulnerability
Nombas ScriptEase:Webserver Edition Default Script Vulnerability
Carey Internet Services Commerce.cgi Directory Traversal Vulnerability
SmartWin CyberOffice Shopping Cart 2.0 Client Information Disclosure Vulnerability
Smartwin Technology CyberOffice Shopping Cart 2.0 Price Modification Vulnerability
Alex Heiphetz Group EZShopper Directory Disclosure Vulnerability
eXtropia WebStore Directory Traversal Vulnerability
Craig Dansie Shopping Cart CGI Backdoor Vulnerability
WWWThreads SQL Command Input Vulnerability
AltaVista Search Engine Directory Traversal Vulnerability
Microsoft FrontPage Server Extensions htimage.exe/imagemap.exe Buffer Overflow and Absolute Path Disclosure Vulnerability
Zeus Technology Zeus Web Server CGI Source Disclosure Vulnerability
Listing of Scripts in "cgi-bin" Directory
Microsoft IIS Sample Directory Present
Frontpage Extensions Directory "/_vti_pvt" Present
Frontpage Extensions Directory "/_vti_bin" Present
"shtml.dll" Web Absolute Path Revealed
shtml.exe Web Absolute Path Revealed Vulnerability
Apache CGI Source Code Viewing Vulnerability
PHP Error Logging Format String Vulnerability
BEA Systems WebLogic Server Proxy Multiple Buffer Overflow Vulnerabilities
Sun Microsystem's Chili!Soft ASP Sample Scripts Directory Traversal Vulnerability
vWebServer ASP Source Code Disclosure Vulnerability
WebCalendar Remote Command Execution Vulnerability
Microsoft Frontpage Extensions Directory "/_vti_log" Present
Microsoft Frontpage Extensions Directory "/_vti_cnf" Present
Novell GroupWise Arbitrary File Retrieval Vulnerability
Novell GroupWise Possible File Retrieval Vulnerability

DATABASE (Return to the top of the page)
Lotus Domino Default Database Unprotected
Oracle WebDB "wdbcgiw" CGI Vulnerability
Oracle WebDB Listener Vulnerability
Microsoft SQL Weak Database Password
Guessed Oracle Database Name
A Default Oracle Login Has Been Found
PostgreSQL 7.0 Server Brute Force Vulnerability
Oracle listener Input Validation Vulnerabilities
Microsoft SQL Server/Data Engine various xp_ Buffer Overflow Vulnerability
IBM DB2 Universal Database for Windows NT SQL DoS Vulnerability
IBM DB2 Universal Database Known Default Password Vulnerability
MySQL Unauthenticated Remote Access Vulnerability
MySQL Local Buffer Overflow Vulnerability
MySQL GRANT Global Password Changing Vulnerability
MySQL SHOW GRANTS Pasword Hash Disclosure Vulnerability
MDBMS Buffer Overflow Vulnerability
Oracle Version
Oracle 8i SQLNet Header Vulnerability (Denial of Service in Oracle Listener)
Oracle 8i TNS Listener Buffer Overflow Vulnerability
Oracle Listener Discloses Absolute Path and Environment Variables
MySQL Authentication Algorithm Vulnerability
Oracle Label Security Unauthorized Access Vulnerability
Rational ClearCase DB Loader TERM Environment Variable Buffer Overflow Vulnerability
Rational ClearCase Information Disclosure Vulnerability
Microsoft SQL Server Multiple Overflow and Format String vulnerabilities

DNS AND BIND  (Domain Name System and Berkeley Internet Name Domain) (Return to the top of the page)
BIND and NAMED Buffer Overflow Vulnerability
Named Daemon Version Number Disclosure Vulnerability
BIND NXT Buffer Overflow Vulnerability
BIND 8.2.2 Domain Cache Denial of Service Vulnerability
Multiple Vendor BIND 8.2.2-P5 Denial of Service Vulnerability
ISC BIND "sigdiv0 bug"
ISC BIND "srv bug"
ISC BIND 4 nslookupComplain() Format String Vulnerability
ISC BIND 4 nslookupComplain() Buffer Overflow Vulnerability
ISC BIND 8 Transaction Signatures Buffer Overflow Vulnerability
ISC BIND 8 Transaction Signatures Heap Overflow Vulnerability
Multiple Vendor BIND iquery Buffer Overflow Vulnerability
Multiple Vendor BIND Cache Poisoning Vulnerability
DNS Zone Transfer
DNS Zone Transfer Disclosing Private Network Mapping
Reverse DNS Name Resolution Discloses Private Network Addresses

E-COMMERCE (Return to the top of the page)
Cart32 "expdate" Administrative Information Disclosure Vulnerability
Multiple Vendor Web Shopping Cart Hidden Form Field Vulnerability
Shop Express and Zilron StoreCreator Parameter Altering Vulnerability
PDGCart Software Buffer Overflow Vulnerability
CNC Technology BizDB Search Script Remote Command Execution Vulnerability
A.H.G. EZShopper Remote Command Execution Vulnerability
"icat" CGI Vulnerability
Hassan Consulting Shopping Cart Arbitrary Command Execution Vulnerability
AmTote Homebet World Accessible Log Vulnerability
Amtote Homebet Account Information Brute Force Vulnerability

FILE TRANSFER PROTOCOL (Return to the top of the page)
Accessible Anonymous FTP Server
FTP Server Login Without Password Vulnerability
Writeable Root Directory on Anonymous FTP Server
STAT FTP Command Information Disclosure Vulnerability
FTP Daemon Bounce
World Readable and Writeable Directory on Anonymous FTP
FTP server SITE EXEC Vulnerability
WU-FTPd 2.4.2, 2.5.0 Multiple Vulnerabilities
Serv-U FTPd Denial of Service Vulnerability
InterSoft NetFtp Denial of Service and Insecure Default Configuration Vulnerabilities
BisonWare Bison FTPd Denial of Service Vulnerability
War FTP Daemon Multiple Vulnerabilities
ArcaneSoft Vermillion FTP Server Denial of Service Vulnerability
TransSoft Broker FTPd Denial of Service Vulnerability
War FTP Daemon Multiple Macro Vulnerabilities
War FTP Daemon Buffer Overflow Vulnerability
Windows Password File (.pwd) Present on Anonymous FTP
Windows Password File (.pwl) Present on Anonymous FTP
Log Files Present on Anonymous FTP Server
Word Documents Present on Anonymous FTP Server
Excel Documents Present on Anonymous FTP Server
Powerpoint Documents Present on Anonymous FTP Server
Lotus Notes Database Present on Anonymous FTP Server
Database Files Present on Anonymous FTP Server
Microsoft Access Files Present on Anonymous FTP Server
Database Files Present on Anonymous FTP Server
Database Files Present on Anonymous FTP Server
Microsoft Outlook Files Present on Anonymous FTP Server
Windows Configuration Files Present on Anonymous FTP Server
MP3 Files Present on Anonymous FTP Server
".forward" File Present on Anonymous FTP Server
".rhosts" File Present on Anonymous FTP Server
LMHOSTS Files Present on Anonymous FTP Server
Trusted Hosts File Present on Anonymous FTP Server
Trusted Hosts File Present on Anonymous FTP Server
Deny Hosts File Present on Anonymous FTP Server
Mail Aliases File Present on Anonymous FTP Server
Illegal Activity on Anonymous FTP Server
Core Files Present on Anonymous FTP server
Shadow Password File Present on Anonymous FTP Server
SQL Files Present on Anonymous FTP Server
EServ Denial of Service Vulnerability
Possible WU-FTPd Remote Root Access with 'SITE EXEC' Command
glftpd 'privpath' Directive Vulnerability
ProFTPD Format String Vulnerability in setproctitle() function
ProFTPD Remote Buffer Overflow Vulnerabilities
Texas Imperial Software Winsock FTPd Directory Traversal Vulnerability
Serv-U FTP Directory Traversal Vulnerability
Cat Soft Serv-U FTP Server Buffer Overflow Vulnerabilities
glftpd Remote Vulnerabilities
WU-FTPd RNFR Command Vulnerability
GoodTech FTP Server Denial of Service Vulnerability
Fastream FTP++ Denial of Service Vulnerability
Fastream FTP++ Directory Traversal Vulnerability
Valid FTP Account Has Been Found
WU-FTPd PASV Vulnerability
WU-FTPd Debug Mode Client Hostname Format String Vulnerability
WU-FTPd /bin SITE EXEC Misconfiguration Vulnerability
Guild FTPD File Existence Disclosure Vulnerability
Celtech ExpressFS USER Buffer Overflow Vulnerability
ProFTPD USER Remote Denial of Service Vulnerability
ProFTPD SIZE Remote Denial of Service Vulnerability
ProFTPD And Wuarchive Remote Exec Due To Buffer Overflow
Serv-U FTP Server Null Bytes DOS
Gene6 BPFTP Server Directory Traversal Vulnerability
Gene6 BPFTP Server User Credentials Disclosure Vulnerability
Sun Solaris FTPd glob() Expansion LIST Heap Overflow Vulnerability
ProFTPD root command execution vulnerability
BRS Webweaver 0.63 FTP Directory Traversal Vulnerability
Tiny FTPd Multiple Buffer Overflow Vulnerabilities
BRS WebWeaver Directory Traversal & Root Path Disclosure Vulnerabilities
Serv-U FTP Server Path Disclosure Vulnerability
GuildFTPD Remote Denial of Service Vulnerability
GuildFTPD SITE Remote Buffer Overflow Vulnerability
GuildFTPD Directory Traversal & Plaintext Password Vulnerability
ACLogic CesarFTP Plaintext Password Storage Vulnerability
Pi-Soft SpoonFTP 'CWD' and 'LIST' Buffer Overflow Vulnerability
TransSoft Broker CWD Buffer Overflow Vulnerability
WU-FTPd Remote Root Access with 'SITE EXEC' Command
Cerberus FTP Server Mutiple Buffer Overflow DoS Vulnerability
WFTPD Shortcut Directory Traversal Vulnerability
ArGoSoft FTP Server .lnk Directory Traversal Vulnerability
Transoft Broker .lnk Directory Traversal Vulnerability
BisonFTP BDL File Upload Directory Traversal Vulnerability
CaesarFTPD FTP Command Buffer Overflow Vulnerability
"sqlnet.log" Present on Anonymous FTP Server
Palm Pilot Weak Encryption Files Present
bftpd Buffer Overflow Vulnerability
CatSoft FTP Serv-U Brute-Force Vulnerability
Mindstorm Networks SmartFTP Daemon 0.2 Directory Traversal Vulnerability
Shadow Op Software Dragon Server Multiple DoS Vulnerabilities
ArGoSoft FTP Server 1.0 Multiple Buffer Overflow Vulnerabilities
Max-Wilhelm Bruker BFTPD Buffer Overflow Vulnerability
WS_FTP Server Denial of Service Vulnerability
War FTP Daemon 1.67b04 Directory Traversal Vulnerability
Nite Server FTPd Multiple DoS Vulnerabilities
BSD FTPd Single Byte Buffer Overflow Vulnerability
Multimania TYPSoft FTP Server Directory Traversal Vulnerability
WhitSoft SlimServe FTPD Directory Traversal Vulnerability
Datawizards FtpXQ Directory Traversal Vulnerability
Netwin SurgeFTP Malformed Request Denial of Service Vulnerability
SunFTP Server Unauthorized File Access Vulnerability
SunFTP Server Partial Input Denial of Service Vulnerability
SunFTP Server Buffer Overflow Vulnerability
QPC FTPd Directory Traversal and BoF Vulnerabilities
Solaris IN.FTPD CWD Username Enumeration Vulnerability
Potential WFTPD 3.00 R5 Directory Traversal Vulnerability
Potential WFTPD Path/File Mapping Buffer Overflow Vulnerability
ACLogic CesarFTP Directory Traversal Vulnerability
Netwin SurgeFTP Weak Password Encryption Vulnerability
FTP Server Banner
TrollFTPD Buffer Overflow Vulnerability
glFTPD LIST Denial of Service Vulnerability
WS-FTP Anonymous Multiple FTP Command Buffer Overflow Vulnerability
EFTP Buffer Overflow Code Execution and Denial of Service Vulnerability
EFTP Password Hash Retrieval Vulnerability
EFTP Clear Text Password Storage Vulnerability
EFTP Server Directory and File Existence Vulnerability
ProFTPD Client Hostname Resolving Vulnerability
Pi-Soft SpoonFTP Directory Traversal Vulnerability
Charles Clark Meteor FTP Directory Traversal Vulnerability
TYPSoft FTP 'RETR' and 'STOR' Denial of Service Vulnerability
Ipswitch WS_FTP Server 'STAT' Buffer Overflow Vulnerability
WU-FTPd File Globbing Heap Corruption Vulnerability
Microsoft IIS FTP Bounce Attack Possibility

FINGER (Return to the top of the page)
"Finger 0@" Information about Logged Users Disclosure Vulnerability
"Finger .@" Information about Logged Users Disclosure Vulnerability
Finger Daemon Accepts Forwarding of Requests
finger Service Discloses Logged Users
FreeBSD fingerd File Disclosure Vulnerability
Cfinger 1.2.2 and 1.3.2 user listing
cfingerd Format String Vulnerability
cfingerd Buffer Oveflow Vulnerability
cfingerd Utilities Format String Vulnerability
cfingerd Utilities Buffer Overflow Vulnerability
Sun Microsystem's Solaris in.fingerd Information Disclosure Vulnerability

FIREWALL (Return to the top of the page)
Check Point Firewall-1 User Name Brute Force Vulnerability
TCP Source Port Pass Firewall
Novell BorderManager Denial of Service Vulnerability
FireWall-1 Administration Ports
FireWall-1 Name Disclosure
FireWall-1 Client Authentication Enabled
Potential Brute Force with FireWall-1 Client Authentication
Network Associates Gauntlet Firewall Remote Buffer Overflow Vulnerability
IP Spoofing
Host Vulnerable to Packet Fragmentation
Firewall Detected
Flicks Software Titan Application Firewall Escaped Character Decoding Vulnerability
Firewall SMTP Content Filtering Evasion Vulnerability

GENERAL REMOTE SERVICES (Return to the top of the page)
Network Associates PGP Keyserver Web Administration Interface Authentication Bypassing Vulnerability
UDP Test-Services
TCP Test-Services
WircSrv MOTD Read Vulnerability
GAMSoft Telsrv DoS Vulnerability
HP JetDirect JetAdmin Password Vulnerability
Telnet banner Information Disclosure Vulnerability
Pragma Systems InterAcces TelnetD Buffer Overflow Vulnerability
Microsoft Windows 2000 Telnet Session Timeout DoS Vulnerability
GoodTech Telnet Server NT DoS Vulnerability
Pragma System's InterAccess TelnetD Server 4.0 Terminal Configuration Vulnerability
ElectroSoft ElectroComm Denial of Service Vulnerability
Microsoft Windows 2000 Telnet Multiple DoS Vulnerability
Microsoft Windows 2000 Telnet Privilege Escalation Vulnerability
Microsoft W2K Telnet Various Domain User Account Access Vulnerability
Pragma InterAccess Denial of Service Vulnerability
Remote Login Service Open
Remote Shell Service Open
Remote Execution Service Open
AT&T WinVNC Server Buffer Overflow And Weak Authentication Vulnerabilities
VNC Server Weak Password Encryption Vulnerability
GOPHER Daemon Present
SSH Server and RSAREF Buffer Overflow Vulnerability
OpenSSH Login Vulnerability
OpenSSH 2.3.1 Flawed Private Key Check Vulnerability
SSH CRC Compensation Attack Detector Vulnerability
SSH1 Session Key Retrieval Vulnerability
SSH1 SSH Daemon Logging Failure Vulnerability
SSH Secure-RPC Weak Encrypted Authentication Vulnerability
Van Dyke Technologies VShell Port Forwarding
SSH Secure Shell Denial of Service Vulnerability
SSH passive information disclosure vulnerability
IRC Server Present
WircSrv IRC Server Denial of Service Vulnerability
Potential Buffer Overflow Vulnerability (xinetd presence detected)
Potential Insecure Default Umask Vulnerability (xinetd presence detected)
Potential xinetd Connection Filtering Via Hostname Vulnerability (xinetd presence detected)
Linux "LPd" Trusted Domain
Linuxconf Present
Linuxconf Buffer Overflow Vulnerability
linuxconf /tmp File Race Condition Vulnerability
identd Service Present
CiscoSecure ACS for Windows NT Buffer Overflow Vulnerability
OpenSSH Kerberos Arbitrary Privilege Elevation Vulnerability
SSH Banner
IRC Banner
LCDproc Daemon Buffer Overflow Vulnerability
IRIX Objectserver Remote Account Creation Vulnerability
Performance Copilot Daemon Process List and Disk Mount Points Disclosure Vulnerability
Darxite Login Buffer Overflow Vulnerability
SpyNet Chat Server Multiple Connection Denial Of Service Vulnerability
Faust Informatics Freestyle Chat MS-DOS Device Name DoS Vulnerability
Symantec NetProwler Password Facilities Weak Design Vulnerability
Network Associates WebShield SMTP Configuration Modification Vulnerability
Network Associates WebShield SMTP 4.5.44 Buffer Overflow Vulnerability
WebMaster ConferenceRoom Developer Edition DoS Vulnerability
TFTP Daemon Theft of '/etc/passwd' file
Cisco TFTPD Server Directory Traversal Vulnerability
Remote Linux Groff Exploitation via lpd
Compaq Management Software Proxy Vulnerability
SSH Short Password Login Vulnerability
OpenSSH Key-Based Source IP Access Control Bypass Vulnerability
McAfee VirusScan Directory Traversal Vulnerability
Lpd Remote Command Execution via DVI Printfilter Configuration Error
Microsoft ISA Server H.323 Memory Leak Denial of Service Vulnerability
POC32 Telnet Vulnerability
Trend Micro OfficeScan DoS Vulnerabilities
Computer Associates ARCServe Insecure Default Network Share Vulnerability
Computer Associates ARCServe Cleartext Administrative Password Vulnerability
Microsoft Windows Universal Plug and Play (UPnP) Simple Service Discovery Protocol (SSDP) DoS Vulnerability
Compaq Management Agents Buffer Overflow Vulnerability
Compaq Management Agents Web File Access Vulnerability
Multiple Vendors System V Derived 'login' Buffer Overflow Vulnerability
Microsoft Windows UPnP Service Buffer Overflow Vulnerability
Microsoft Windows 2000 LDAP SSL Password Modification Vulnerability
Microsoft Window's NNTP Denial of Service Vulnerability
"RUSERS" RPC Service Information Disclosure Vulnerability
"RWALL" Spoofing
Trend Micro InterScan VirusWall RegGo.dll Buffer Overflow Vulnerability
QNX crypt() Vulnerability
Frontpage Server Extensions Authoring is Enabled
Qbik WinGate Log Service Directory Traversal Vulnerability
Icecast print_client() Buffer Overflow Vulnerability
Trend Micro InterScan VirusWall Weak Admin Password Protection Vulnerability
CrossWind CyberScheduler websyncd remote Buffer Overflow Vulnerability
Spytech SpyAnywhere Unauthorized Administrator Access Vulnerability
Spytech SpyAnywhere Plaintext Password Vulnerability
iPlanet Calendar Server Plaintext Admin Password Vulnerability
Webmin Environment Variable Information Disclosure Vulnerability
Icecast Directory Traversal Vulnerability
Icecast Denial of Service Vulnerability
Mozilla BugZilla process_bug.cgi Restricted Bug Comments Revealing Vulnerability
Mozilla BugZilla show_activity.cgi Restricted Bug Comments Revealing Vulnerability
Mozilla Bugzilla showattachment.cgi Arbitrary Bug Viewing Vulnerability
Mozilla BugZilla ShowDependencyTree.cgi Restricted Bug Comments Revealing Vulnerability
Mozilla Bugzilla describecomponents.cgi Arbitrary Bug Viewing Vulnerability
Mozilla BugZilla ShowDependencyGraph.cgi Restricted Bug Comments Revealing Vulnerability
Mozilla BugZilla ShowVotes.cgi Restricted Bug Comments Revealing Vulnerability
Mozilla Bugzilla reports.cgi Cross-Site Scripting Vulnerability
Mozilla Bugzilla createaccount.cgi Cross-Site Scripting Vulnerability
Mozilla Bugzilla showvotes.cgi Cross-Site Scripting Vulnerability
Mozilla Bugzilla process_bug.cgi Information Disclosure Vulnerability
Mozilla Bugzilla 2.8 Unchecked Existing Bug Report Vulnerability
Mozilla Bugzilla process_bug.cgi Duplicate Bug Disclosure Vulnerability

HARDWARE (Return to the top of the page)
RIP Protocol Address Disclosure Vulnerability
Cisco Catalyst 3500 XL Remote Arbitrary Command Execution Vulnerability
Nortel Contivity Denial of Service and File Viewing Vulnerabilities
Cisco IOS HTTP %% Vulnerability
Cisco Router Online Help Vulnerability
Cisco IOS HTTP Configuration Arbitrary Administrative Access Vulnerability
Cisco IOS BGP Transitive Attribute Denial of Service Vulnerability
Ethernet Adapter MAC Address

INFORMATION (NIS, YP, WHOIS) (Return to the top of the page)
NSI RWhoisd Remote Format String Vulnerability
Network Solutions RWHOISd System Log Format String Vulnerability

INFORMATION GATHERING (Return to the top of the page)
Your HTML source discloses e-mail addresses
Checkpoint Secure Remote Unauthenticated Security Policy Download
"Systat" Service Open
"Netstat" Service Open
SSH daemon information retrieving
Global User List
Remote Windows Stealable User List
Anonymous Access to LDAP Server
Open UDP Services List
Open TCP Services List
Presence of a Load-Balancing Device Detected

MAIL SERVICES (Return to the top of the page)
Qualcomm Qpopper POP3 Mail Service Buffer Overflow Vulnerability
Berolist Mailing List Manager Vulnerability
Avirt Rover POP Server Buffer Overflow Vulnerability
True North Software Internet Anywhere POP Server Buffer Overflow Vulnerability
Majordomo Remote Command Execution Vulnerability
Atrium Software Mercur Mail Server 3.2 POP3 Buffer Overflow Vulnerability
Qualcomm Qpopper Remote Execution Vulnerability
Network Associates WebShield SMTP Trailing Period DoS Vulnerability
University Of Washington imapd Buffer Overflow in the LIST command
Atrium Software Mercur Mail Server 3.2 Directory Traversal Vulnerability
Atrium Software Mercur Mail Server 3.2 IMAP4 Buffer Overflow Vulnerability
University of Washington's IMAP Server Buffer Overflow Vulnerability
iPlanet Netscape Messaging Server IMAP Denial of Service Vulnerability
Potential imapd 'Local' Buffer Overflow Vulnerabilities
Floosietek FTGate Mail Server Vulnerability
Seattle Lab Emurl 2.0 Email Account Access Vulnerability
Atrium Software Mercur WebView WebMail-Client Buffer Overflow Vulnerability
InetServ 3.0 WebMail Long GET Request Vulnerability
IMail IMonitor status.cgi Denial of Service Vulnerability
Atrium Software Mercur Mail Server 3.3 EXPN Buffer Overflow Vulnerability
Gordano NTMail Web Services DoS Vulnerability
Lotus Domino Mail Server 'Policy' Buffer Overflow Vulnerability
Ipswitch IMail File Attachment Vulnerability
Stalker CommuniGate Pro Arbitrary File Read and Code Exec Vulnerability
Red Hat PAM Qpopper User Enumeration Vulnerability
A-V Tronics InetServ Webmail Authentication Buffer Overflow Vulnerability
MailStudio2000 Arbitrary File Viewing Vulnerability
Alt-N WorldClient Long URL DoS and Mdaemon WebConfig Overflow DoS Vulnerability

NEWS SERVER (Return to the top of the page)
InterNetNews Daemon (INND) News Server Buffer Overflow Vulnerability
InterNetNews Daemon (INND) 2.X News Server Buffer Overflow Vulnerability
Multiple Vendor INN Remote Vulnerability
ISC INN News Server Buffer Overflow Vulnerability
Atrium Software Cassandra NNTP Server 1.10 Buffer Overflow Vulnerability
Internet News Daemon (INND) possible /tmp file race
Netscape Collabra Malformed Data DoS Vulnerability
InterNetNews innfeed Command-Line Buffer Overflow Vulnerability

NFS (Network File System)  (Return to the top of the page)
AppleTalk Filing Protocol Guest Access Enabled
AIX Filesystem Vulnerability
mountd NFS Service Buffer Overflow Vulnerability
NFS Exported Filesystems List Vulnerability
NFS Exported Directories Mountable by Unauthorized Users
Linux Kernel NFSd Denial of Service Vulnerability
"nlockmgr" RPC Service Multiple Vulnerabilities
"llockmgr" RPC Service Present
"nlockmgr" Allows Proxying of NFS Requests

PROXY (Return to the top of the page)
Wingate HTTP Port Remote Access Vulnerability
ITServ Rideway PN Denial of Service Vulnerability
Wingate Bounce Misconfiguration
Web Proxy
Misconfigured WWW Proxy
TinyProxy buffer overflow vulnerability
AnalogX Proxy DoS Vulnerability
Baltimore Technologies WEBsweeper Restricted Directory Disclosure Vulnerability
Baltimore Technologies WEBsweeper DoS Vulnerability
Baltimore Technologies WEBsweeper Script Filtering Bypass Vulnerability
NTmailserver.com NT Mail 5.x Proxy Access Vulnerability
Infopulse Gatekeeper Buffer Overflow Vulnerability
Squid Web Proxy Cache Denial of Service Vulnerabilty

RPC (Remote Procedure Call) (Return to the top of the page)
Open RPC Services List
Hidden RPC Services
ToolTalk Buffer Overflow Vulnerability
"CMSD" RPC Service Buffer Overflow Vulnerability
PCNFSD Buffer Overflow Vulnerability
"PCNFSD" Remote User List Disclosure Vulnerability
PCNFS Daemon Printer List Disclosure Vulnerability
"statd" RPC Service Buffer Overflow Vulnerability
"statd" and "automountd" RPC Service Remote Command Execution Vulnerability
AMD Daemon Buffer Overflow Vulnerability
ypbind RPC Daemon Present
"nisd" RPC Service Buffer Overflow Vulnerability
ypupdated RPC Daemon Remote Command Execution Vulnerability
Sun Solstice AdminSuite sadmind RPC Daemon Buffer Overflow Vulnerability
PCNFSd RPC Daemon List of Group Names Disclosure Vulnerability
"PCNFSd" Banner
"PCNFSd" Brute Force of Unix Account Vulnerability
Registration of Bogus RPC Programs
Sun Solaris "rpcbind" Listens on Port 32771
ypserv RPC Daemon Present
Weak NIS Domain Name
ypserv RPC Daemon Exported Map List Disclosure Vulnerability
ypserv RPC Daemon Shared Password File Retrievable Vulnerability
ypbind RPC Daemon IP and Port of ypserv Server Disclosure Vulnerability
Checking Presence of "rexd" RPC Daemon
"rstatd" RPC Service System Information Disclosure Vulnerability
"bootparam" RPC Daemon NIS Domain Name Disclosure Vulnerability
SunView selection_svc RPC Daemon Remote Access to Files Vulnerability
Silicon Graphics IRIX "fam" RPC Service Directory Listing Vulnerability
mountd RPC Daemon Discloses Exported Directories Accessed by Remote Hosts
"cmsd" RPC Daemon Over TCP Might Indicate a Break-in
"autofsd" RPC Daemon Remote Command Execution Vulnerability
Statd Format Bug Vulnerability
YP/NIS RPC Services Listening on Non-Privileged Ports
NFS RPC Services Listening on Non-Privileged Ports
"sprayd" RPC Service Present
"rquotad" RPC Service Present
SGI IRIX rpc.espd Buffer Overflow Vulnerability
Sun Solaris snmpXdmid Buffer Overflow Vulnerability
Microsoft Remote Procedure Call Service DoS Vulnerability
Multiple CDE Vendor ToolTalk Database Server Format String Vulnerability
ToolTalk Library Buffer Overflow Vulnerability
Legato NetWorker Reverse DNS Authentication Vulnerability
Legato Networker Present

SMB / NETBIOS (Server Message Block / Netbios) (Return to the top of the page)
"NetBIOS" Service Open
NetBIOS Name of Primary Domain Controller (PDC) Identifiable
NetBIOS Name Accessible
NetBIOS Shared Folders
NetBIOS Access to Shared Folders
Null Password NetBIOS Access
NetBIOS Name Information Revealed
Microsoft Windows 9x/ME Share Level Password Bypass Vulnerability
SAMBA Long Password Buffer Overflow Vulnerability
WINS Domain Controller Spoofing Vulnerability
NetBIOS Name Conflict Vulnerability
NetBIOS Release Vulnerability
Microsoft Windows 9x Challenge Replay Vulnerability
Windows NT LanMan Hash Replay with Modified SMB Client Vulnerability
Microsoft Windows 9x/NT 4.0 NetBIOS over TCP/IP Resource Exhaustion Vulnerability
Microsoft Windows 9x NetBIOS NULL Name Vulnerability
Samba Pre-2.0.5 Vulnerabilities
Microsoft Windows 9x File Handle Buffer Overflow Vulnerability
Microsoft Exchange 2000 Server EUSER_EXSTOREEVENT Account Vulnerability
Microsoft Windows Unprotected ADMIN$ Share Vulnerability
Microsoft Windows NT 4.0 / 2000 Ignored SMB Response DoS Vulnerability
Microsoft Windows NT 4.0/2000 SMB Write Request Denial of Service Vulnerability
Microsoft Windows 9x/NT/2000 MS-DOS Device Name DoS Vulnerability
Microsoft Windows NT 4.0 Remote Registry Request DoS Vulnerability

SMTP AND MAIL SERVER (Simple Mail Transfer Protocol and Mail Server) (Return to the top of the page)
Network Associates WebShield SMTP MIME Decoding Vulnerability
Deerfield WorldClient 2.1 Directory Traversal Vulnerability
Baltimore Technologies MAILsweeper Zip of Death Vulnerability
Microsoft Exchange OWA Global Address List Disclosure Vulnerability
Baltimore Technologies MAILsweeper Script Filtering Bypass Vulnerability
Alt-N MDaemon IMAP Denial of Service Vulnerability
Alt-N WorldClient 2.2.2 DOS-Device Denial of Service Vulnerability
Alt-N MDaemon 3.5.0 Denial of Service Vulnerability
True North Software Internet Anywhere Buffer Overflow Vulnerability
Qualcomm Qpopper E-mail Spoofing Vulnerability
MDaemon Denial of Service Vulnerability
Qualcomm Qpopper Remote Buffer Overflow Vulnerability
Alt-N MDaemon Session ID Hijacking Vulnerability
NetcPlus SmartServer3 POP Buffer Overflow Vulnerability
Alt-N MDaemon 2.8.5.0 UIDL Denial of Service Vulnerability
QPC POPd Buffer Overflow Vulnerability
Qualcomm Qpopper Username Buffer Overflow Vulnerability
Mail Relay
Nosque MsgCore SMTP ServerDenial of Service Vulnerability
CSM Mail Server Buffer Overflow Vulnerability
Sendmail "ETRN" Command Denial of Service Vulnerability
True North Software Internet Anywhere SMTP Server Denial of Service Vulnerability
Mail Server Uudecode Vulnerability
Valid Logins Guessed with SMTP EXPN Command
Valid Logins Guessed with SMTP VRFY Command
IT House MailServer Buffer Overflow Vulnerability
NetWin DMail ETRN Buffer Overflow Vulnerability
EType EServ Buffer Overflow Vulnerability
Davide Libenzi XMail Buffer Overflow Vulnerability
Jack De Winter WinSMTP Buffer Overflow Vulnerability
Lotus Domino SMTP Server ENVID Buffer Overflow and DoS Vulnerability
Microsoft Exchange Server Invalid MIME Header
McAfee WebShield SMTP Content Filter Bypass Vulnerability
Berkeley Sendmail MIME Vulnerability
Lotus Domino Server ESMTP Buffer Overflow Vulnerability
Sendmail 8.6.x VRFY and EXPN Improper Bounds Checking
Lotus Notes Domino Server 4.6 NLDAP DoS Vulnerability
Sendmail SMTP HELO Buffer Overflow Vulnerability
Microsoft Exchange 4.0 and 5.0 (non SP1) HELO Buffer Overflow
NetcPlus SmartServer3 SMTP Buffer Overflow
Computalynx CMail SMTP Buffer Overflow Vulnerability
Gordano NTmail Buffer Overflow Vulnerability
Seattle Lab Software SLMail 3.0.2421 Buffer Overflow 'Mail From' Vulnerability
Microsoft Exchange Server 5.5 Encapsulated SMTP Address Vulnerability
FuseWare FuseMail POP Mail Buffer Overflow Vulnerability
Xmail CTRLServer Remote Arbitrary Commands Vulnerability
InterScan VirusWall uuencoded Filename Buffer Overflow Vulnerability
Trend Micro InterScan VirusWall Scan Evasion Vulnerability
Trend Micro InterScan VirusWall Long HELO Buffer Overflow Vulnerability
Infinite InterChange Denial of Service Vulnerability
RobTex Viking Server SMTP Username Enumeration Vulnerability
Atrium Software Mercur Mail Server 3.2 Multiple Buffer Overflow Vulnerabilities
eXtremail Remote Format String Vulnerability
Microsoft Windows 2000 SMTP Improper Authentication Vulnerability
Qualcomm Qpopper Unsafe fgets() Vulnerability
Trend Micro InterScan VirusWall Sircam Virus SMTP Vulnerability
Lotus Domino Mail Loop Denial of Service Vulnerability
Sendmail mail.local Vulnerabilities
Sendmail Debugger Arbitrary Code Execution Vulnerability
Sendmail Queue Processing Data Loss/DoS Vulnerability
Sendmail Inadequate Privilege Lowering Vulnerability
Sendmail Unsafe Signal Handling Race Condition Vulnerability
Ipswitch IMail Server Account Information Brute Force Vulnerability
Ipswitch IMail Server Account Information Brute Force Vulnerability
Ipswitch IMail Server Account Information Brute Force Vulnerability
Ipswitch IMail Server Path Disclosure Vulnerability
Postfix SMTP Log Denial Of Service Vulnerability

SNMP (Simple Network Management Protocol) (Return to the top of the page)
General information about this host
Interface list
IP addresses
Routing table
ARP table
TCP listening sockets
UDP listening sockets
TCP connections established
List of storage devices connected to this host
List of devices available on this host
CPU list
Printers state
Partition table of this host
Process table
Software list
Cisco statistics
Information about this host
Network information
LanManager (Windows) service list
SMB share list
Microsoft Windows user login list
LanManager (NetBIOS) Session List
LanManager (Windows file sharing and printing) general information
List of other NT domains
List of NT servers on this domain
List of active SMB connections
IP forwarding enabled on this machine
Sun process list (ps -ef)
Wired-side SNMP WEP key exposure in 802.11b Access Points
Readable SNMP Information
Writeable SNMP Information

TCP/IP (Transmission Control Protocol / Internet Protocol) (Return to the top of the page)
Open Protocol List
ICMP Mask Reply
Smurf Attack (ICMP Amplifier)
ICMP Timestamp Request
Weakness in TCP/IP Implementation
Predictable IP ID field Vulnerability
BSD Weak initial Sequence Number Vulnerability
Windows ARP Denial of Service Vulnerability
FreeBSD IP Fragment Queue Resource Exhaustion Vulnerability
FreeBSD IPFW Me Point To Point Interface Address Addition Vulnerability
Disabled Fragmented IP Packets Filtering
Enabled Forwarding of Fragmented IP Packets
Enabled IP Packet Routing
Disabled TCP/IP Security Filters
Microsoft Windows Terminal Server Service (RDP Protocol) DoS Vulnerability

WEB SERVER (Return to the top of the page)
Htaccess File Disclosure
Htpasswd File Disclosure
HTTP File Disclosure
Web Directory Default Browsable Feature
Web Directory Browsable
Disclosure of Sensitive Information in URLs
Backup Files Present on Web Server
New "Virtual Web Server" Hostnames Found.
FrontPage Password Files: "service.pwd"
FrontPage Password Files: "users.pwd"
FrontPage Password Files: "authors.pwd"
FrontPage Password Files: "administrators.pwd"
Sambar Server Remote Command Execution Vulnerability
MailStudio 2000 Buffer Overflow Vulnerability
Windows NT Security File Accessible
Trend Micro Interscan Viruswall Configurations Modification Vulnerability
Allaire JRun Web Server Directory Traversal Vulnerability
Allaire JRun JSP Source Disclosure Vulnerability
Allaire JRun JSP File Disclosure Vulnerability
Allaire JRun Unnecessary JSessionID Appending In URL Vulnerability
Web Server Version
SSL Web Server Version
HTTPS SSL Certificate
Microsoft IIS 4.0 Filter Extensions Buffer Overflow Vulnerability
Netscape Enterprise Server "PageServices" File Disclosure Vulnerability
Lotus Domino CGI Absolute Path Revealed
Lotus Domino Version Disclosure Vulnerability
Lotus Domino cgi-bin Buffer Overflow Vulnerability
Netscape Enterprise Server (Web Publisher) Directory Listing Vulnerability
Netscape Enterprise Server Web Publisher HTML File Information Disclosure Vulnerability
Netscape Enterprise Server Web Publisher Directory Listing Vulnerability
Netscape Enterprise Server Authentication Protocol Buffer Overflow Vulnerability
Netscape Enterprise Server "GET" Request Buffer Overflow Vulnerability
Netscape Enterprise Server "wp_html_rend" Command Denial of Service Vulnerability
Netscape Enterprise Server "Search" Script Denial of Service Vulnerability
Savant Web Server CGI Script Source Code Disclosure Vulnerability
Apache Win32 Web root Directory Listing Vulnerability
Linux ntop Unauthorized File Retrieval Vulnerability
ntop -w Buffer Overflow Vulnerability
Robotex Viking Server Buffer Overflow Vulnerability
Worm HTTPd Directory Traversal Vulnerability
Alt-N MDaemon 3.1.1 DoS Vulnerability
Joe Kloss RobinHood Buffer Overflow Vulnerability
Netbeans IDE Web server Vulnerability
T. Hauck Jana Server Hex Encoded Directory Traversal Vulnerability
T. Hauck Jana Server MS-DOS Device Name DoS Vulnerability
O'Reilly WebSitePro Absolute Path Disclosure Vulnerability
Microsoft IIS Web Server Absolute Path Disclosure Vulnerability
PHP 3 Safe_Mode Bypass Vulnerability
ZBSoft's ZBServer Pro Web Server Buffer Overflow Vulnerability
Savant Web Server Buffer Overflow Vulnerability
Microsoft Index Server File Viewing Vulnerability
Microsoft IIS Index Server Arbitrary File Listing Vulnerability
Microsoft IIS "idq" Absolute Path Disclosure Vulnerability Revealed
Microsoft IIS 4 "webhits.dll" Vulnerability
Microsoft NT IIS ASP Alternate Data Streams Vulnerability
Microsoft IIS 4 "iisadmpwd" Web Directory Present
Microsoft IIS 5.0 'Translate f' File Disclosure Vulnerability
Zope Escalation of Privileges Vulnerability
LiveStats Statistics Server 5.02x Buffer Overflow Vulnerability
S.u.S.E Linux 6.3/6.4 Listing of Installed Packages on System
iPlanet Web server .shtml Buffer Overflow Vulnerability
Microsoft IIS 3.0 ASP Source Disclosure Vulnerability
PeleSoft NetSnap Buffer Overflow Vulnerability
Software602 602Pro LAN SUITE Buffer Overflow Vulnerability
IBM HTTP Server Denial of Service Vulnerability
Microsoft IIS 4.0 Log Avoidance Vulnerability
Microsoft IIS 2.0 and 3.0 Long URL Vunerability
BEA Systems WebLogic Server Remote Command Execution Vulnerability
BEA Systems WebLogic Server SSIServlet Show Code Vulnerability
SonicWALL SOHO Denial of Service Vulnerability
vqSoft vqServer 1.4.49 DoS Vulnerability
Acme THTTPd Buffer Overflow Vulnerability
Gordano NTMail Web Configuration Denial of Service Vulnerability
AnalogX SimpleServer:WWW GET Buffer Overflow Vulnerability
Guido Frassetto SEDUM HTTP Server Directory Traversal Vulnerability
GoAhead WebServer Directory Traversal Vulnerability
WhitSoft Development SlimServe HTTPd Server DoS Vulnerability
AOLserver Directory Traversal Vulnerability
Soft Lite ServerWorx Directory Traversal Vulnerability
Heat-On HSWeb Web Server Path Disclosure Vulnerability
BEA Systems WebLogic Server JSP Source Code Disclosure Vulnerability
Allaire JRun Servlet DoS Vulnerability
Bajie Web server Remote Command Execution Vulnerability
John Roy Pi3Web Buffer Overflow Vulnerability
ITAfrica WEBactive Directory Traversal Vulnerability
LocalWEB2000 Directory Traversal Vulnerability
OmniHTTPD File Corruption and Command Execution Vulnerability
Caucho Technology Resin Directory Traversal Vulnerability
Caucho Technology Resin JSP & JavaBean Source Disclosure Vulnerability
Netscape Enterprise Server Denial of Service Vulnerability
Sun Microsystem's Chili!Soft ASP Administration Console Default Password Vulnerability
Netscape FastTrak Server Cache Module DoS Vulnerability
IBM Websphere Server JSP source code disclosure Vulnerability
Roxen WebServer Null and Space Byte Listing Vulnerability
ITAfrica WEBactive HTTP Server Long Request Denial of Service Vulnerability
Acme THTTPd Global File Disclosure Vulnerability
Microsoft IIS 4.0/5.0 Session ID Cookie Marking vulnerability
Allaire JRun Servlet Extraleading slash Vulnerability
Microsoft IIS File Fragment Disclosure Vulnerability
Netscape Enterprise Server INDEX Directory Listing Vulnerability
Netscape Enterprise Server Arbitrary Remote File Disclosure Vulnerability
IBM HTTP Server Afpacache denial of service vulnerability
Apache /tmp file race
O'Reilly Website Professional Web Directory Disclosure Vulnerability
BEA Systems WebLogic Server Double Dot Buffer Overflow Vulnerability
Microsoft IIS WebDAV 'Search' Denial of Service Vulnerability
Robin Twombly A1 HTTP Server Denial of Service Vulnerability
Robin Twombly A1 HTTP Server Directory Traversal Vulnerability
Michael Lamont Savant Web Server DoS Vulnerability
Apache Tomcat 3.0 Directory Traversal Vulnerability
602Pro Lan Suite Dos Device Denial of Service Vulnerability
SEDUM HTTP Web server Denial of Service Vulnerability
Microsoft IIS WebDAV Denial of Service Vulnerability
BEA Systems WebLogic Server Directory Traversal Vulnerability
Zope ZClass Modification DOS Vulnerability
RobTex Viking Server Directory Traversal Vulnerability
GoAhead WebServer /aux Denial of Service Vulnerability
WEBactive HTTP Server Default Log Vulnerability
Lotus Domino Multiple Denial of Service Vulnerabilities
Xitami Web server MS DOS Device Name DoS Vulnerability
Xitami Web server MS-DOS Device Name DoS Vulnerability
Zope Web server Path Disclosure Vulnerability
Viking Server Relative Path Webroot Escaping Vulnerability
FileMaker Pro 5.0 Web Companion Software Multiple Vulnerabilities
Allaire Macromedia ColdFusion 4.0x CFCACHE Vulnerability
AnalogX SimpleServer:WWW AUX Directory Denial of Service Vulnerability
Microsoft Windows 2000 IIS 5.0 IPP ISAPI 'Host:' Buffer Overflow Vulnerability
BearShare 2.2.2 File Disclosure Vulnerability
BRS WebWeaver HTTP 0.63 File Disclosure Vulnerability
Microsoft IIS 4.0/5.0 Escaped Characters Vulnerability
Microsoft IIS CGI Filename Decode Error Vulnerability
Netscape Enterprise Server "REVLOG" Command Denial Of Service Vulnerability
Jason Rahaim MP3Mystic Server Directory Traversal Vulnerability
iPlanet Web Server URI/Method Denial of Service Vulnerability
Apache Web Server HTTP Request Denial of Service Vulnerability
DataWizard WebXQ Directory Traversal Vulnerability
Symantec Netprowler Server Report Directory Traversal Vulnerability
Elron IM Message Inspector Directory Traversal Vulnerability
AnalogX SimpleServer:WWW 1.03 DoS Vulnerability
Omnicron OmniHTTPD File Source Disclosure Vulnerability
Omnicron OmniHTTPD PHP Denial of Service Vulnerability
O'Reilly WebBoard Pager Hostile JavaScript Vulnerability
Acme.Serve v1.7 Arbitrary File Access Vulnerability
Microsoft IIS 4.0/5.0 Malformed File Extension DoS Vulnerability
Netscape Enterprise Server "SAVE" Command Denial Of Service Vulnerability
Netscape Enterprise Server "REVADD" Command Denial Of Service Vulnerability
Netscape Enterprise Server "REVNUM" Command Denial Of Service Vulnerability
Netscape Enterprise Server "STARTREV" Command Denial Of Service Vulnerability
Netscape Enterprise Server "REVLABEL" Command Denial Of Service Vulnerability
Air Messenger LAN Server Directory Traversal Vulnerability
Air Messenger LAN Server Path Disclosure Vulnerability
Gaztek HTTP Daemon Buffer Overflow Vulnerability
MetaProducts Offline Explorer Directory Traversal Vulnerability
Microsoft Index Server and Indexing Service ISAPI Extension Buffer Overflow Vulnerability
Sambar Server 4.3 Buffer Overflow Vulnerability
WebServer Cross-Site Scripting Vulnerability
IBM WebSphere Showcode Vulnerability
IBM WebSphere Application Server Plugin DoS Vulnerability
Allegro RomPager Malformed URL Request DoS Vulnerability
vWebServer MS DOS Device Name Denial of Service Vulnerability
Squid Reverse Proxy Vulnerability
Allaire JRun Admin Web Server Transversal Directory
Savant Web Server Buffer Overflow Vulnerability
CSM Alibaba Web Server DoS Vulnerability
CSM Alibaba File Access Vulnerability
AnalogX SimpleServer:WWW Hex Encoded URL Directory Traversal Vulnerability
O'Reilly WebSite GET Buffer Overflow Vulnerability
Balanced Web server is reachable through the Internet
Oracle 9i Application Server Path Disclosure Vulnerability
Microsoft IIS Internal IP Address/Internal Network Name Disclosure Vulnerability
Netscape Enterprise Server Internal IP Address/Internal Network Name Disclosure Vulnerability
Apache Server Address Disclosure Vulnerability
SIX-webboard 2.01 File Retrieval Vulnerability
Microsoft IIS 5.0 In-Process Table Privilege Elevation Vulnerability
BadBlue Source Code Disclosure Vulnerability
Jakarta Tomcat 3.2.1 Error Message Information Disclosure Vulnerability
Microsoft ISA Server Proxy Service Memory Leak Denial of Service Vulnerability
Roxen Remote File Access Vulnerability
Microsoft ISA Server Cross-Site Scripting Vulnerability
AOLServer Long Authentication String Denial of Service Vulnerability
Surf-Net ASP Forum Predictable Cookie ID Vulnerability
Jakarta Tomcat 3.2.1 Error Message Information Disclosure Vulnerability
Microsoft IIS 4.0/5.0 Extended UNICODE Remote Execution Vulnerability
Microsoft IIS 4.0/5.0 Malformed Filename Request Vulnerability
iPlanet CMS/Netscape Directory Server Directory Traversal Vulnerability
iPlanet CMS/Netscape Directory Server Plaintext Administrative Password Vulnerability
Web server Reveals Password File
Stalker CommuniGate Pro Arbitrary File Read Vulnerability
Keware Technologies HomeSeer Directory Traversal Vulnerability
Microsoft IIS UNC Mapped Virtual Host Vulnerability
HP Web JetAdmin Directory Traversal Vulnerability
Metainfo MetaIP and Sendmail Vulnerabilities
Lotus Domino Server Directory Traversal Vulnerability
Oracle Web Listener URL Character Substitution Vulnerability
Simple Server Directory Traversal Vulnerability
Microsoft IIS 4.0/5.0 Executable File Parsing Vulnerability
Apache AuthPG Remote SQL Query Manipulation Vulnerability
Apache mod_auth_mysql Remote SQL Query Manipulation Vulnerability
Vibechild Directory Manager Command Execution Vulnerability
Apache mod_auth_pgsql Remote SQL Query Manipulation Vulnerability
HTTP method 'PUT' is enabled
HTTP method 'MKCOL' is enabled
HTTP method 'DELETE' is enabled
HTTP method 'COPY' is enabled
HTTP method 'MOVE' is enabled
HTTP method 'LOCK' is enabled
HTTP method 'PROPFIND' is enabled
HTTP method 'MKDIR' is enabled
HTTP method 'SAVE' is enabled
HTTP method 'INDEX' is enabled
PHPMyExplorer Arbitrary File Disclosure Vulnerability
Web Server Internal IP Address/Internal Network Name Disclosure Vulnerability
Apache mod_auth_oracle Remote SQL Query Manipulation Vulnerability
Lotus Domino Internal IP Address Disclosure Vulnerability
Microsoft IIS UTF Directory Traversal and Remote Command Execution Vulnerability
Apple Macintosh OS X .DS_Store Directory Listing Disclosure Vulnerability
Apple Macintosh OS X Client Apache Directory Contents Disclosure Vulnerability
Apple Macintosh OS X FBCIndex File Contents Disclosure Vulnerability
Microsoft IIS 4.0/5.0 File Permission Canonicalization Vulnerability
Microsoft IIS WebDAV is activated
Working Resources BadBlue Path Disclosure Vulnerability
Working Resources BadBlue DoS Vulnerability
Microsoft NT IIS MDAC RDS Vulnerability
Zope DTML Format Method Checking Vulnerability
Apache Possible Directory Index Disclosure Vulnerability
Oracle9iAS Web Cache Buffer Overflow Vulnerability
Lotus Notes Visible Views Disclosure Vulnerability
Lotus Domino View ACL Bypass Vulnerability
Lotus Domino File Disclosure Vulnerability
Xitami Web server Empty GET Request Denial of Service Vulnerability
IBM HTTP Server Source Code Disclosure Vulnerability
Apache mod_usertrack Predictable ID Generation Vulnerability
Jakarta Tomcat Path Disclosure Vulnerability
Alchemy Lab Alchemy Eye Remote Command Execution Vulnerability
Xitami Administrator Plaintext Password Storage Vulnerability
Alchemy Lab Alchemy Eye Remote Network Log Viewing Vulnerability
Acme THTTPd Basic Authentication Buffer Overflow Vulnerability
Acme THTTPd Path Disclosure Vulnerability
Compaq Insight Manager XE Buffer Overflow Vulnerability
IBM WebSphere Application Server Predictable Session ID Vulnerability

WINDOWS (Return to the top of the page)
Microsoft Media Server Denial of Service Vulnerability
Microsoft NetMeeting Remote Desktop Sharing DoS Vulnerability
Microsoft Windows Media Unicast Services DoS Vulnerability
Microsoft Windows Media Services Severed Connection DoS Vulnerability
Enabled Default Password
Disabled Windows File Protection
Enabled Auto Admin Logon
Enabled Cached Logon Credential
Enabled Display Last Username
Enabled Shutdown Without Logon
Enabled Winlogon CD-ROM Allocation
Enabled Winlogon Floppy Disk Allocation
Windows CDROM Autorun Enabled
Disabled Clear Page File
Possible Log Recording Issues
Enabled Caching of Dial-up Password Feature
Enabled Guest Access to Application Log
Enabled Guest Access to Security Log
Enabled Guest Access to System Log
Detected LanMan Authentication method
Detected use of LanMan with PPP Chap connections
Detected a Modem
MS CHAP v2.0 and VPN connections
Detected Compatibility 8.3 Filename Feature
Enabled OS2 subsystem
Enabled POSIX subsystem
Weak PPP Client Security
Printer Driver Security
Installed IKS
Disabled Microsoft RAS Data Encryption
Disabled RAS logging
Installed PC Protect Stealth
Installed SKIn NT logger
Machine Information Disclosed by Registry
Microsoft NT 4.0 SynAttackProtect Denial of Service Vulnerability
Missing AllowedPaths Registry Key
Detected Domain Controller
Enabled DCOM
Disabled SMB Signing
Allowed Null Session
Detected Automatic Share on Server
Detected Automatic Share on Workstation
Installed CaptureScreen Client
Installed CaptureScreen Server
Installed Compaq Carbon Copy
Installed ADspec Desktop Delivery
Installed NetLook Client
Installed Netlook Server
Installed PCAnywhere
Installed RemotelyAnywhere
Microsoft Windows Malformed Links
Windows NT 4.0 Terminal Server RegAPI.DLL Buffer Overflow
Microsoft Windows 2000 RDP DoS Vulnerability

X-WINDOW (Return to the top of the page)
Accessible X-Window Server
X-Window Sniffing
X Windows Font Server Denial of Service Vulnerability

The above list was complied by Qualys, Inc.  Qualys performs over 1,500,000 tests a year.

Frequently ask questions

For information regarding fees, please call R. Kinney Williams at 800-920-7119
or send him an email at examiner@yennik.com.

Back Button

 

Company Information
Yennik, Inc.
4409 101st Street
Lubbock, Texas 79424
806-798-7119
 examiner@yennik.com

Terms and Conditions, Privacy Statement, © Copyright Yennik, Incorporated

 We are Americans and will never be defeated.