Add to collection(s) Add to saved
  1. Engineering & Technology
  2. Computer Science
  3. Networking

Nessus_short_security_report

advertisement 
Executive Summary:
>PRINT
TOP 10 HOSTS with ISSUES
PLUGIN IDS
ISSUES
22964
22
10736
14
24260
12
10107
10
20108
6
10662
6
51192
6
33817
6
43111
6
10863
5
11032
4
53491
4
47830
4
SYNOPSIS
11954
4
SSL Certificate signed with an unknown Certificate
Authority
The SSL certificate for this service is signed by an unknown
certificate authority.
SGDynamo sgdynamo.exe HTNAME Parameter Path
Disclosure
The remote host has an application that is affected by an
information disclosure vulnerability.
Service Detection
The remote service could be identified.
DCE Services Enumeration
A DCE/RPC service is running on the remote host.
HyperText Transfer Protocol (HTTP) Information
Some information about the remote HTTP configuration can
be extracted.
HTTP Server Type and Version
A web server is running on the remote host.
Web Server / Application favicon.ico Vendor Fingerprinting
The remote web server contains a graphic image that is
prone to information disclosure.
Web mirroring
Nessus crawled the remote web site.
Web Application Tests : Load Estimation
Load estimation for web application tests.
HTTP Methods Allowed (per directory)
This plugin determines which HTTP methods are allowed on
various CGI directories.
SSL Certificate Information
This plugin displays the SSL certificate.
Web Server Directory Enumeration
It is possible to enumerate directories on the web server.
SSL / TLS Renegotiation DoS
The remote service allows repeated renegotiation of TLS /
SSL connections.
CGI Generic Injectable Parameter
Some CGIs are candidate for extended injection tests.
Microsoft Windows SMB Service Detection
A file / print sharing service is listening on the remote host.
External URLs
Links to external sites were gathered.
Web Server Allows Password Auto-Completion
Auto-complete is not disabled on password fields.
SSL Cipher Suites Supported
The remote service encrypts communications using SSL.
Microsoft Windows SMB NativeLanManager Remote
System Information Disclosure
It is possible to obtain information about the remote
operating system.
SMTP Authentication Methods
The remote mail server supports authentication.
POP Server Detection
A POP server is listening on the remote port.
SMTP Service Cleartext Login Permitted
The remote mail server allows cleartext logins.
Web Server Uses Plain Text Authentication Forms
The remote web server might transmit credentials in
cleartext.
Microsoft Windows SMB NULL Session Authentication It
is possible to log into the remote Windows host with a
NULL s es s ion.
Common Platform Enumeration (CPE)
It is possible to enumerate CPE names that matched on the
remote system.
11011
4
49704
4
42057
4
21643
3
10785
2
54580
2
10185
2
54582
2
26194
2
26920
2
45590
2
11936
2
10150
2
51891
2
10397
2
26917
2
46180
2
54615
2
12053
2
11153
2
19506
2
10386
2
11414
2
10394
2
10263
2
10147
2
Medium Severity problem(s) found
0% High Severity
5% Medium
Severity
94% Low
Severity
PLUGIN IDS
SEVERITY
51192
Medium
11954
Medium
22964
Low
10736
Low
24260
Low
10107
Low
20108
Low
10662
Low
33817
Low
43111
Low
10863
Low
11032
Low
53491
Low
47830
Low
11011
Low
49704
Low
42057
Low
21643
Low
10785
Low
54580
Low
10185
Low
54582
Low
26194
Low
26920
Low
45590
Low
# OF
ISSUES
6
4
22
14
12
10
6
6
6
6
5
4
4
4
4
4
4
3
2
2
2
2
2
2
2
11936
Low
2
10150
Low
2
51891
Low
2
10397
Low
2
26917
Low
2
46180
Low
2
54615
Low
2
12053
Low
2
11153
Low
2
19506
Low
2
10386
Low
2
11414
Low
2
10394
Low
2
10263
Low
2
10147
Low
2
remote system.
OS Identification
It is possible to guess the remote operating system
Windows NetBIOS / SMB Remote Host Information
Disclosure
It is possible to obtain the network name of the remote host.
SSL Session Resume Supported
The remote host allows resuming SSL sessions.
Microsoft Windows SMB LanMan Pipe Server Listing
Disclosure
It is possible to obtain network information.
Microsoft Windows SMB Registry : Nessus Cannot Access
the Windows Registry
Nessus is not able to access the remote Windows Registry.
Additional DNS Hostnames
Potential virtual hosts have been detected.
Device Type
It is possible to guess the remote device type.
Host Fully Qualified Domain Name (FQDN) Resolution It
was possible to resolve the name of the remote host.
Service Detection (HELP Request)
The remote service could be identified.
Nessus Scan Information
Information about the Nessus scan.
Web Server No 404 Error Code Check
The remote web server does not return 404 error codes.
IMAP Service Banner Retrieval
An IMAP server is running on the remote host.
Microsoft Windows SMB Log In Possible
It is possible to log into the remote host.
SMTP Server Detection
An SMTP server is listening on the remote port.
Nessus Server Detection
A Nessus daemon is listening on the remote port.
Scan Time
Start time:
Fri Sep 09 17:09:15 2011 End
time:
Fri Sep 09 18:04:55 2011
Number of vulnerabilities
High
0
Medium
10
Low
158
Remote Host Information
Operating System:
Windows 7 Professional
NetBIOS name:
SEBASTIAN-PC
IP address:
1 9 2 .1 6 8 .1 .1 5 0
MAC address:
f 4 : 6 d : 0 4 : 3 9 : c1 : c6
^BACK
Related documents
OnlineBankingSecurit..
OnlineBankingSecurit..
Sample PowerPoint Presentation - Volunteer Centers of Michigan
Sample PowerPoint Presentation - Volunteer Centers of Michigan
Report for Lab 32
Report for Lab 32
SSL The Secure Socket Layer protocol was created by Navigator
SSL The Secure Socket Layer protocol was created by Navigator
Princess Nora Bint Abdul Rahman University College of Computer
Princess Nora Bint Abdul Rahman University College of Computer
SSL Supplement - YSU Computer Science & Information Systems
SSL Supplement - YSU Computer Science & Information Systems
SSL
SSL
sampleAnswer
sampleAnswer
Whitepaper - David Marcoux, CISSP
Whitepaper - David Marcoux, CISSP
Nessus - VMware Solution Exchange
Nessus - VMware Solution Exchange
Document
Document
Nessus 5.0 Installation and Configuration Guide
Nessus 5.0 Installation and Configuration Guide
Nessus 6.4 Installation and Configuration Guide
Nessus 6.4 Installation and Configuration Guide
Download
advertisement