|
|
Ports: 3 (High:0 Low:3)
| Port | Protocol | Service | Details | ||
|---|---|---|---|---|---|
| 80 | tcp | http | Apache/1.3.29 (Unix) mod_ssl/2.8.16 OpenSSL/0.9.7c PHP/4.3.4 | ||
| 443 | tcp | https | Certificate name 'apollo.example.com' does not match hostname | ||
| 10000 | tcp | snet-sensor-mgmt | <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN""http://www.w3.org/TR/REC-html40/loose.dtd"><html><head> |
Ports Closed Since Last Month: 1 (High:0 Low:1)
| Port | Protocol | Service | Details | ||
|---|---|---|---|---|---|
| 10000 | tcp | https | No banner found |
Vulnerabilities: 3 (High:0 Medium:1 Low:2)
| Vulnerability | 12110 | OpenSSL < 0.9.6m, 0.9.7d Multiple Vulnerabilities
|
Medium Risk |
|---|
| Description | This system is running a vulnerable version of OpenSSL, according to its banner. A remote attacker could crash the service by conducting a deliberately invalid SSL/TLS handshake. Also, this version is vulnerable to a timing based attack which may allow an attacker to guess the content of fixed data blocks, such as passwords or credit card numbers. | ||||
|---|---|---|---|---|---|
| Solution | Upgrade to an unaffected version, or apply a patch. | ||||
| Category | Hosting or infrastructure flaw. | ||||
| References | CVE-2004-0112 CVE-2003-0078 CVE-2003-0147 Bugtraq ID 9899 CVE-1999-0428 CVE-2003-0131 CVE-2004-0079 CVE-2004-0081 | ||||
| CVSS Score | 5 (AV:N/AC:L/Au:N/C:N/I:N/A:P) | ||||
| First Found | 12 December 2009 | Port | 80/tcp, 443/tcp | Last 6 Months | 
|
| Vulnerability | 11229 | Script Calling phpinfo() Detected
|
Low Risk |
|---|
| Description | This system has a PHP script that calls phpinfo(). This function displays a significant amount of system and configuration information. A remote attacker could use this for reconnaissance. An example of a URL you can use to exploit this is: https://192.168.0.81/phpinfo.php |
||||
|---|---|---|---|---|---|
| Solution | Remove this script, or protect it with some kind of authentication. | ||||
| Category | Application or content flaw. | ||||
| References | phpinfo documentation | ||||
| Deadline | 13 January 2010 | ||||
| CVSS Score | 5 (AV:N/AC:L/Au:N/C:P/I:N/A:N) | ||||
| First Found | 12 December 2009 | Port | 80/tcp, 443/tcp | Last 6 Months | 
|
| Vulnerability | 10766 | Apache mod_userdir Information Leak | Low Risk |
|---|
| Description | This system has the mod_userdir Apache module enabled. This leaks information about which user accounts exists. A request to a non-existant user will always return a 404 (file not found) code. However, if the user exists then the web server may return a 403 (permission denied) code, depending on the permissions on the user's home directory. | ||||
|---|---|---|---|---|---|
| Solution | If you do not need the functionality, disable mod_userdir. Alternatively, mod_rewrite can provide equivalent functionality without the information leak. | ||||
| References | SecuriTeam advisory CVE-2001-1013 | ||||
| CVSS Score | 2 (AV:R/AC:L/Au:NR/C:P/A:N/I:N/B:N) | ||||
| First Found | 13 December 2009 | Port | 80/tcp, 443/tcp | Last 6 Months | 
|
Historical Information
