Vulnerability Assessment & Network Security Forums



The comprehensive list of vulnerabilities in this category are updated on a daily basis.  There are currently 2,554 vulnerability test descriptions and summaries in the database.  Clicking on the name of the vulnerability below will bring up the specific details for each network security test along with recommendations for patching the vulnerability and related discussions.

Home >> Browse Vulnerability Assessment Database >> General

Vulnerability assessments available for:
General


Vulnerability Name Vulnerability Description Network Security Threat Type
1) 602LAN SUITE Open Telnet Proxy Checks for telnet proxy in 602LAN SUITE attack
2) Aardvark Topsites Multiple Vulnerabilities Detect Aardvark Topsites version infos
3) Access Point detection Detects Wireless APs infos
4) AFS client version AFS client version infos
5) Amanda Index Server version Amanda Index Server version infos
6) AOLserver Default Password AOLserver Default Password infos
7) BIND vulnerable to DNS storm Checks the remote BIND version infos
8) Brightmail Control Center Default Account/Password Checks for default account / password in Brightmail Control Center infos
9) BrightStor ARCserve/Enterprise Backup Default Account Vulnerability Determines if the ARCServer Default account is present infos
10) cfengine detection and local identification check for the presence of cfengine with local identification version checks if possible infos
11) CheckPoint InterSpect Detect CheckPoint InterSpect infos
12) Chora Detection Checks for the presence of Chora infos
13) Cisco IDS Device Manager Detection Cisco IDS Management Web Server Detect infos
14) clarkconnectd detection clarkconnectd detection infos
15) Cobalt Web Administration Server Detection Cobalt Web Administration Server Detection infos
16) Compaq Web Based Management Agent Proxy Vulnerability Compaq Web Based Management Agent Proxy Vulnerability infos
17) Compaq Web-based Management Login Detect Predictable Compaq Web-based Management / HP System Management Agent Administrator Passwords attack
18) CVS file existence information disclosure weakness Logs into the remote CVS server and asks the version infos
19) CVS malformed entry lines flaw Logs into the remote CVS server and asks the version infos
20) CVS Multiple Unspecified Vulnerabilities Logs into the remote CVS server and asks the version infos
21) CVS pserver CVSROOT passwd file cmd exec Logs into the remote CVS server and asks the version infos
22) CVS pserver dir create bug Logs into the remote CVS server and asks the version infos
23) CVS pserver double free() bug Logs into the remote CVS server and asks the version infos
24) CVS pserver heap overflow Logs into the remote CVS server and asks the version infos
25) CVS server piped checkout access validation Logs into the remote CVS server and asks the version infos
26) DCShop exposes sensitive files DCShop exposes sensitive files infos
27) Delta UPS Daemon Detection Delta UPS Daemon Detection infos
28) Deprecated SSL Protocol Usage Checks for use of a deprecated SSL protocol infos
29) Determine if Bind 9 is running Determine which version of BIND name daemon is running infos
30) DHCP server info gathering Chats with the remote DHCP server infos
31) DNS AXFR Determines if the remote name server allows zone transfers infos
32) DNS Cache Snooping DNS Cache Snooping infos
33) DNS Server Detection detects a running name server infos
34) DNS Server Fingerprint detects a name server type and version infos
35) DNS Server on UDP and TCP Checks if the remote DNS servers answers on TCP too infos
36) Dropbear SSH server format string vulnerability Checks remote SSH server type and version infos
37) Enable local security checks Obtains the remote OS name and installed packages infos
38) Enhydra Multiserver Default Password Enhydra Multiserver Default Admin Password infos
39) F5 Device Default Support Password F5 Device Default Support Password infos
40) File Disclosure in osCommerce's File Manager Detect osCommerce's File Manager File Disclosure infos
41) File Disclosure in SurgeLDAP Detect SurgeLDAP File Disclosure infos
42) File Inclusion Vulnerability in Gemitel Detect Gimtel File Inclusion Vulnerability infos
43) FlexWATCH Authentication Bypassing Detect FlexWATCH Authentication Bypassing infos
44) Formmail Version Information Disclosure Formmail Version Information Disclosure infos
45) Get the IMAP Banner Grab and display the IMAP banner infos
46) Google Search Appliance Detection Detects a Google Appliance infos
47) HMAP Fingerprints the web server mixed
48) Horde Detection Checks for the presence of Horde infos
49) Host FQDN Performs a name resolution infos
50) HP Integrated Lights-Out Detection Detects iLO infos
51) HP Jet Admin 6.5 or less Vulnerability HP JetAdmin 6.5 or less vulnerability attack
52) HP Jet Admin 7.x Directory Traversal HP JetAdmin directory traversal attack attack
53) HTTP Server type and version HTTP Server type and version infos
54) HTTP TRACE Look for an HTTP proxy on the way infos
55) HTTP version spoken HTTP version infos
56) ICMP domain name request Sends an ICMP Domain Name request infos
57) IDA Pro Detection IDA Pro Detection infos
58) IlohaMail Detection Checks for the presence of IlohaMail infos
59) IMP Detection Checks for the presence of IMP infos
60) Information about the scan Displays information about the scan end
61) Invision Power Top Site List SQL Injection Detect Invision Power Top Site List SQL Injection infos
62) iPlanet Application Server Detection Sun ONE Application Server detection infos
63) IRC daemon identification IRCD version infos
64) IRCXPro Default Admin password Logs into the remote administrative interface of ircxpro infos
65) Kerberos 5 issues Check for kerberos infos
66) Kerberos IV cryptographic weaknesses Check for kerberos infos
67) Knox Arkeia Network Backup Agent Unauthorized Access Determines if the Arkeia Default account is present infos
68) Leafnode denials of service Check Leafnode version number for flaws infos
69) Linksys Router Default Password Linksys Router Default Password infos
70) Linux Distribution Detection Guesses the remote distribution version infos
71) Local Checks Failed Displays information about the scan end
72) McAfee IntruShield management console Detect McAfee IntruShield Management Console infos
73) McAfee myCIO detection McAfee myCIO detection infos
74) Mediahouse Statistics Web Server Detect Mediahouse Statistics Web Server Detection infos
75) Microsoft Exchange Public Folders Information Leak Microsoft Exchange Public Folders Information Leak infos
76) Misc information on News server Misc information on News server infos
77) NetCharts Server Default Password NetCharts Server Default Password infos
78) NetGear Router Default Password NetGear Router Default Password infos
79) NetOp products information disclosure Detect if a NetOp product is configured to make the host name, IP address etc. public infos
80) Netscape Enterprise Default Administrative Password Netscape Enterprise Default Administrative Password infos
81) Netscape Enterprise Server default files Checks for Netscape Enterprise Server default files infos
82) Network Chemistry Wireless Sensor Detection Detects Wireless Sensor infos
83) NTP read variables NTP allows query of variables infos
84) ntpd Incorrect Group Privileges Vulnerability Checks for incorrect group privileges vulnerability in ntpd infos
85) Obtain /etc/passwd using NetInfo Uses NetInfo to read /etc/passwd remotely infos
86) Open News server Public NNTP server is open to outside infos
87) OpenFTPD Detection Determines the presence of OpenFTPD infos
88) Oracle Applications One-Hour Install Detect Oracle Applications One-Hour Install Detect infos
89) Oracle Web Administration Server Detection Oracle Web Administration Server Detect infos
90) OS Identification Determines the remote operating system infos
91) osCommerce Malformed Session ID XSS Vulnerability Detect osCommerce Malformed Session ID XSS infos
92) osTicket Backdoored Detect osTicker Backdoored infos
93) osTicket Detection Checks for the presence of osTicket infos
94) PHP-Nuke sql_debug Information Disclosure Make a request like http://www.example.com/?sql_debug=1 infos
95) Predictable TCP sequence number TCP SEQ infos
96) Private IP address leaked in HTTP headers Checks for private IP addresses in HTTP headers infos
97) Private IP address Leaked using the PROPFIND method Checks for private IP addresses in PROPFIND response infos
98) psyBNC Server Detection Check for the presence of psyBNC. infos
99) Psychoblogger SQL Injection Detect Psychoblogger SQL Injection infos
100) Public CVS pserver Logs into the remote CVS server infos
101) Relative IP Identification number change Relative IP Identification number change infos
102) Remote Code Execution in Knowledge Builder Detect Knowledge Builder Code Execution infos
103) RiSearch OpenProxy Determines the presence of RiSearch's search.pl infos
104) RTSP Server type and version RTSP Server detection infos
105) S-HTTP detection Checks if the web server accepts the Secure method infos
106) SCO OpenServer multiple vulnerabilities Checks the remote SCO OpenServer infos
107) Shopping Cart Arbitrary Command Execution (Hassan) Shopping Cart Arbitrary Command Excution (Hassan) infos
108) SHOUTcast Server logfiles XSS SHOUTcast Server DoS detector vulnerability infos
109) SHOUTcast Server User-Agent / Host Header Denial of Service Vulnerability Checks for User-Agent / Host header denial of service vulnerability in SHOUTcast Server infos
110) SiteScope Web Administration Server Detection SiteScope Web Administration Server Detect infos
111) SiteScope Web Managegment Server Detect SiteScope Web Management Server Detect infos
112) SSH protocol version 1 enabled Negotiate SSH connections infos
113) SSH protocol versions supported Negotiate SSHd connections infos
114) SSH Server type and version SSH Server type and version infos
115) SSL Certificate Expiry Checks SSL certificate expiry infos
116) SSL ciphers checks the server certificate and available SSLv2 ciphers infos
117) Standard & Poors detection Detect if the remote host is a Standard & Poors' MultiCSP infos
118) Sun Cobalt Adaptive Firewall Detection Sun Cobalt Adaptive Firewall Detection infos
119) Sun JavaServer Default Admin Password Sun JavaServer Default Admin Password infos
120) Supported SSL Ciphers Suites Checks which SSL ciphers suites are supported infos
121) SWAT allows user names to be obtained by brute force Detect SWAT server port infos
122) TCP sequence number approximation Check for TCP approximations on the remote host infos
123) TFTP directory permissions (HP Ignite-UX) Determines if the remote host has writeable directories exposed via TFTP (HP Ignite-UX) destructive_attack
124) TFTP file detection (Cisco CallManager) Determines if the remote host has sensitive files exposed via TFTP (Cisco CallManager) attack
125) TFTP file detection (Cisco IOS CA) Determines if the remote host has sensitive files exposed via TFTP (Cisco IOS CA) attack
126) TFTP file detection (HP Ignite-UX passwd) Determines if the remote host has sensitive files exposed via TFTP (HP Ignite-UX passwd) attack
127) TFTP file detection (HP Ignite-UX) Determines if the remote host has sensitive files exposed via TFTP (HP Ignite-UX) attack
128) The remote BIND has dynamic updates enabled Determines if the UPDATE operation is implemented on the remote host infos
129) Tripwire for Webpages Information Disclosure Vulnerability Checks for information disclosure vulnerability in Tripwire for Webpages infos
130) TTL Anomaly detection Check for TTL anomalies on the remote host infos
131) UDDI detection Find UDDI infos
132) Ultraseek Web Server Detect Ultraseek Web Server Detect infos
133) Unconfigured web server Determines if the remote web server has been configured infos
134) Unprotected Netware Management Portal Unprotected Netware Management Portal infos
135) Unprotected PC Anywhere Service Unprotected PC Anywhere Service infos
136) Unreal Tournament Server Detection Detects Unreal Tournament Server infos
137) Usable remote name server Determines if the remote name server allows recursive queries infos
138) Version of BIND Sends a VERSION.BIND request infos
139) vqServer administrative port Detect vqServer's administrative port infos
140) WebDAV enabled Checks the presence of WebDAV infos
141) WhatsUp Gold Default Admin Account WhatsUp Gold Default Admin Account infos
142) WorldClient for MDaemon Server Detection Check for WorldClient for MDaemon infos
143) X-Micro Router Default Password X-Micro Router Default Password infos
144) Xoops myheader.php URL Cross Site Scripting Vulnerability Detect Xoops myheader.php URL XSS infos