NESSUS REPORT List of PlugIn IDsThe following plugin IDs have problems a

1. NESSUS REPORT
2. List of PlugIn IDs
3.  
4.  
5. The following plugin IDs have problems associated with them. Select the ID to review more detail.
6. PLUGIN ID#
7. #
8. PLUGIN NAME
9. SEVERITY
10. 42411
11. 1
12. Microsoft Windows SMB Shares Unprivileged Access
13. High Severity problem(s) found
14. 51192
15. 1
16. SSL Certificate signed with an unknown Certificate Authority
17. Medium Severity problem(s) found
18. 45411
19. 1
20. SSL Certificate with Wrong Hostname
21. Medium Severity problem(s) found
22. 44135
23. 1
24. Web Server Generic Cookie Injection
25. Medium Severity problem(s) found
26. 42873
27. 1
28. SSL Medium Strength Cipher Suites Supported
29. Medium Severity problem(s) found
30. 26928
31. 1
32. SSL Weak Cipher Suites Supported
33. Medium Severity problem(s) found
34. 26919
35. 1
36. SMB Guest Account Local User Access
37. Medium Severity problem(s) found
38. 12218
39. 1
40. mDNS Detection
41. Medium Severity problem(s) found
42. 10815
43. 1
44. Web Server Generic XSS
45. Medium Severity problem(s) found
46. 22964
47. 5
48. Service Detection
49. Low Severity problem(s) found
50. 10107
51. 4
52. HTTP Server Type and Version
53. Low Severity problem(s) found
54. 24260
55. 3
56. HyperText Transfer Protocol (HTTP) Information
57. Low Severity problem(s) found
58. 11032
59. 3
60. Web Server Directory Enumeration
61. Low Severity problem(s) found
62. 40984
63. 2
64. Browsable Web Directories
65. Low Severity problem(s) found
66. 33817
67. 2
68. Web Application Tests : Load Estimation
69. Low Severity problem(s) found
70. 11011
71. 2
72. SMB Service Detection
73. Low Severity problem(s) found
74. 10662
75. 2
76. Web mirroring
77. Low Severity problem(s) found
78. 50845
79. 1
80. OpenSSL Detection
81. Low Severity problem(s) found
82. 45590
83. 1
84. Common Platform Enumeration (CPE)
85. Low Severity problem(s) found
86. 45410
87. 1
88. SSL Certificate commonName Mismatch
89. Low Severity problem(s) found
90. 45380
91. 1
92. AFP Server Share Enumeration (guest)
93. Low Severity problem(s) found
94. 43111
95. 1
96. HTTP Methods Allowed (per directory)
97. Low Severity problem(s) found
98. 42880
99. 1
100. SSL / TLS Renegotiation Handshakes MiTM Plaintext Data Injection
101. Low Severity problem(s) found
102. 35716
103. 1
104. Ethernet card brand
105. Low Severity problem(s) found
106. 26920
107. 1
108. Windows SMB NULL Session Authentication
109. Low Severity problem(s) found
110. 25240
111. 1
112. Samba Server Detection
113. Low Severity problem(s) found
114. 25220
115. 1
116. TCP/IP Timestamps Supported
117. Low Severity problem(s) found
118. 24786
119. 1
120. Nessus Windows Scan Not Performed with Admin Privileges
121. Low Severity problem(s) found
122. 21643
123. 1
124. SSL Cipher Suites Supported
125. Low Severity problem(s) found
126. 17651
127. 1
128. Obtains the password policy
129. Low Severity problem(s) found
130. 12053
131. 1
132. Host Fully Qualified Domain Name (FQDN) Resolution
133. Low Severity problem(s) found
134. 11936
135. 1
136. OS Identification
137. Low Severity problem(s) found
138. 10863
139. 1
140. SSL Certificate Information
141. Low Severity problem(s) found
142. 10860
143. 1
144. SMB Use Host SID to Enumerate Local Users
145. Low Severity problem(s) found
146. 10859
147. 1
148. SMB LsaQueryInformationPolicy Function SID Enumeration
149. Low Severity problem(s) found
150. 10785
151. 1
152. SMB NativeLanManager Remote System Information Disclosure
153. Low Severity problem(s) found
154. 10666
155. 1
156. Apple Filing Protocol Server Detection
157. Low Severity problem(s) found
158. 10397
159. 1
160. SMB LanMan Pipe Server Listing Disclosure
161. Low Severity problem(s) found
162. 10395
163. 1
164. SMB Shares Enumeration
165. Low Severity problem(s) found
166. 10394
167. 1
168. SMB Log In Possible
169. Low Severity problem(s) found
170. 10287
171. 1
172. Traceroute Information
173. Low Severity problem(s) found
174. 10180
175. 1
176. Ping the remote host
177. Low Severity problem(s) found
178. 10150
179. 1
180. Windows NetBIOS / SMB Remote Host Information Disclosure
181. Low Severity problem(s) found
182. 10114
183. 1
184. ICMP Timestamp Request Remote Date Disclosure
185. Low Severity problem(s) found
186. PORT CIFS (445/TCP)
187. Plugin ID: 10395
188. SMB Shares Enumeration
189.  
190. Synopsis
191. 
It is possible to enumerate remote network shares.
192. List of Hosts
193. 

Iomega-055805.local
194.  
195. Plugin Output
196. 

197. Here are the SMB shares available on the remote host when logged as sbdmjsap:
198.  
199. - music
200. - public
201. - backups
202. - movies
203. - photos
204. - ActiveFolders
205. - IPC$
206.  
207.  
208.  
209. Description
210.  
211. 
By connecting to the remote host, Nessus was able to enumerate
212. the network share names.
213.  
214. Solution
215. 
N/A
216.  
217. Risk Factor
218. 
None
219.  
220. Plugin publication date: 2000/05/09
221. PORT (0/TCP)
222. Plugin ID: 24786
223. Nessus Windows Scan Not Performed with Admin Privileges
224.  
225. Synopsis
226. 
The Nessus scan of this host may be incomplete due to insufficient\privileges provided.
227. List of Hosts
228. 

Iomega-055805.local
229.  
230. Plugin Output
231. 
It was not possible to connect to \\IOMEGA-055805\ADMIN$
232.  
233.  
234. Description
235.  
236. 
The Nessus scanner testing the remote host has been given SMB
237. credentials to log into the remote host, however these credentials
238. do not have administrative privileges.
239.  
240. Typically, when Nessus performs a patch audit, it logs into the
241. remote host and reads the version of the DLLs on the remote host
242. to determine if a given patch has been applied or not. This is
243. the method Microsoft recommends to determine if a patch has been
244. applied.
245.  
246. If your Nessus scanner does not have administrative privileges when
247. doing a scan, then Nessus has to fall back to perform a patch audit
248. through the registry which may lead to false positives (especially
249. when using third party patch auditing tools) or to false negatives
250. (not all patches can be detected thru the registry).
251.  
252. Solution
253. 
Reconfigure your scanner to use credentials with administrative
254. privileges.
255.  
256. Risk Factor
257. 
None
258.  
259. Plugin publication date: 2007/03/12
260. PORT WWW (443/TCP)
261. Plugin ID: 33817
262. Web Application Tests : Load Estimation
263.  
264. Synopsis
265. 
Load estimation for web application tests.
266. List of Hosts
267. 

Iomega-055805.local
268.  
269. Plugin Output
270. 
Here are the estimated number of requests in miscellaneous modes
271. for the GET method only :
272. [Single / Some Pairs / All Pairs / Some Combinations / All Combinations]
273.  
274. arbitrary command execution : S=64 SP=64 AP=64 SC=64 AC=64
275. format string : S=8 SP=8 AP=8 SC=8 AC=8
276. SSI injection : S=12 SP=12 AP=12 SC=12 AC=12
277. unseen parameters : S=140 SP=140 AP=140 SC=140 AC=140
278. SQL injection (2nd order) : S=4 SP=4 AP=4 SC=4 AC=4
279. blind SQL injection : S=48 SP=48 AP=48 SC=48 AC=48
280. SQL injection : S=96 SP=96 AP=96 SC=96 AC=96
281. directory traversal (extended test) : S=200 SP=200 AP=200 SC=200 AC=200
282. directory traversal : S=100 SP=100 AP=100 SC=100 AC=100
283. directory traversal (write access) : S=8 SP=8 AP=8 SC=8 AC=8
284. local file inclusion : S=4 SP=4 AP=4 SC=4 AC=4
285. web code injection : S=4 SP=4 AP=4 SC=4 AC=4
286. cross-site scripting (extended patterns) : S=16 SP=16 AP=16 SC=16 AC=16
287. DOM XSS : S=4 SP=4 AP=4 SC=4 AC=4
288. persistent XSS : S=16 SP=16 AP=16 SC=16 AC=16
289. injectable parameter : S=8 SP=8 AP=8 SC=8 AC=8
290. XML injection : S=4 SP=4 AP=4 SC=4 AC=4
291.  
292. All tests : S=736 SP=736 AP=736 SC=736 AC=736
293.  
294. Here are the estimated number of requests in miscellaneous modes
295. for both methods (GET & POST) :
296. [Single / Some Pairs / All Pairs / Some Combinations / All Combinations]
297.  
298. arbitrary command execution : S=128 SP=128 AP=128 SC=128 AC=128
299. format string : S=16 SP=16 AP=16 SC=16 AC=16
300. SSI injection : S=24 SP=24 AP=24 SC=24 AC=24
301. unseen parameters : S=280 SP=280 AP=280 SC=280 AC=280
302. SQL injection (2nd order) : S=8 SP=8 AP=8 SC=8 AC=8
303. blind SQL injection : S=96 SP=96 AP=96 SC=96 AC=96
304. SQL injection : S=192 SP=192 AP=192 SC=192 AC=192
305. directory traversal (extended test) : S=400 SP=400 AP=400 SC=400 AC=400
306. directory traversal : S=200 SP=200 AP=200 SC=200 AC=200
307. directory traversal (write access) : S=16 SP=16 AP=16 SC=16 AC=16
308. local file inclusion : S=8 SP=8 AP=8 SC=8 AC=8
309. web code injection : S=8 SP=8 AP=8 SC=8 AC=8
310. cross-site scripting (extended patterns) : S=32 SP=32 AP=32 SC=32 AC=32
311. DOM XSS : S=8 SP=8 AP=8 SC=8 AC=8
312. persistent XSS : S=32 SP=32 AP=32 SC=32 AC=32
313. injectable parameter : S=16 SP=16 AP=16 SC=16 AC=16
314. XML injection : S=8 SP=8 AP=8 SC=8 AC=8
315.  
316. All tests : S=1472 SP=1472 AP=1472 SC=1472 AC=1472
317.  
318. Your mode : single, GET & POST.
319. Maximum number of requests : 1472
320.  
321.  
322.  
323. Description
324.  
325. 
This script computes the maximum number of requests that would be done
326. by the generic web tests, depending on miscellaneous options.
327. It does not perform any test by itself.
328.  
329. The results can be used to estimate the duration of these tests, or
330. the complexity of additional manual tests.
331.  
332. Note that the script does not try to compute this duration based
333. on external factors such as the network and web servers loads.
334.  
335. Solution
336. 
n/a
337.  
338. Risk Factor
339. 
None
340.  
341. Plugin publication date: 2009/10/26
342. Plugin last modification date: 2010/12/27
343. PORT WWW (80/TCP)
344. Plugin ID: 33817
345. Web Application Tests : Load Estimation
346.  
347. Synopsis
348. 
Load estimation for web application tests.
349. List of Hosts
350. 

Iomega-055805.local
351.  
352. Plugin Output
353. 
Here are the estimated number of requests in miscellaneous modes
354. for the GET method only :
355. [Single / Some Pairs / All Pairs / Some Combinations / All Combinations]
356.  
357. arbitrary command execution : S=64 SP=64 AP=64 SC=64 AC=64
358. format string : S=8 SP=8 AP=8 SC=8 AC=8
359. SSI injection : S=12 SP=12 AP=12 SC=12 AC=12
360. unseen parameters : S=140 SP=140 AP=140 SC=140 AC=140
361. SQL injection (2nd order) : S=4 SP=4 AP=4 SC=4 AC=4
362. blind SQL injection : S=48 SP=48 AP=48 SC=48 AC=48
363. SQL injection : S=96 SP=96 AP=96 SC=96 AC=96
364. directory traversal (extended test) : S=200 SP=200 AP=200 SC=200 AC=200
365. directory traversal : S=100 SP=100 AP=100 SC=100 AC=100
366. directory traversal (write access) : S=8 SP=8 AP=8 SC=8 AC=8
367. local file inclusion : S=4 SP=4 AP=4 SC=4 AC=4
368. web code injection : S=4 SP=4 AP=4 SC=4 AC=4
369. cross-site scripting (extended patterns) : S=16 SP=16 AP=16 SC=16 AC=16
370. DOM XSS : S=4 SP=4 AP=4 SC=4 AC=4
371. persistent XSS : S=16 SP=16 AP=16 SC=16 AC=16
372. injectable parameter : S=8 SP=8 AP=8 SC=8 AC=8
373. XML injection : S=4 SP=4 AP=4 SC=4 AC=4
374.  
375. All tests : S=736 SP=736 AP=736 SC=736 AC=736
376.  
377. Here are the estimated number of requests in miscellaneous modes
378. for both methods (GET & POST) :
379. [Single / Some Pairs / All Pairs / Some Combinations / All Combinations]
380.  
381. arbitrary command execution : S=128 SP=128 AP=128 SC=128 AC=128
382. format string : S=16 SP=16 AP=16 SC=16 AC=16
383. SSI injection : S=24 SP=24 AP=24 SC=24 AC=24
384. unseen parameters : S=280 SP=280 AP=280 SC=280 AC=280
385. SQL injection (2nd order) : S=8 SP=8 AP=8 SC=8 AC=8
386. blind SQL injection : S=96 SP=96 AP=96 SC=96 AC=96
387. SQL injection : S=192 SP=192 AP=192 SC=192 AC=192
388. directory traversal (extended test) : S=400 SP=400 AP=400 SC=400 AC=400
389. directory traversal : S=200 SP=200 AP=200 SC=200 AC=200
390. directory traversal (write access) : S=16 SP=16 AP=16 SC=16 AC=16
391. local file inclusion : S=8 SP=8 AP=8 SC=8 AC=8
392. web code injection : S=8 SP=8 AP=8 SC=8 AC=8
393. cross-site scripting (extended patterns) : S=32 SP=32 AP=32 SC=32 AC=32
394. DOM XSS : S=8 SP=8 AP=8 SC=8 AC=8
395. persistent XSS : S=32 SP=32 AP=32 SC=32 AC=32
396. injectable parameter : S=16 SP=16 AP=16 SC=16 AC=16
397. XML injection : S=8 SP=8 AP=8 SC=8 AC=8
398.  
399. All tests : S=1472 SP=1472 AP=1472 SC=1472 AC=1472
400.  
401. Your mode : single, GET & POST.
402. Maximum number of requests : 1472
403.  
404.  
405.  
406. Description
407.  
408. 
This script computes the maximum number of requests that would be done
409. by the generic web tests, depending on miscellaneous options.
410. It does not perform any test by itself.
411.  
412. The results can be used to estimate the duration of these tests, or
413. the complexity of additional manual tests.
414.  
415. Note that the script does not try to compute this duration based
416. on external factors such as the network and web servers loads.
417.  
418. Solution
419. 
n/a
420.  
421. Risk Factor
422. 
None
423.  
424. Plugin publication date: 2009/10/26
425. Plugin last modification date: 2010/12/27
426. PORT CIFS (445/TCP)
427. Plugin ID: 10785
428. SMB NativeLanManager Remote System Information Disclosure
429.  
430. Synopsis
431. 
It is possible to obtain information about the remote operating\system.
432. List of Hosts
433. 

Iomega-055805.local
434.  
435. Plugin Output
436. 
The remote Operating System is : Unix
437. The remote native lan manager is : Samba 3.2.5
438. The remote SMB Domain Name is : IOMEGA-055805
439.  
440.  
441.  
442. Description
443.  
444. 
It is possible to get the remote operating system name and
445. version (Windows and/or Samba) by sending an authentication
446. request to port 139 or 445.
447.  
448. Solution
449. 
n/a
450.  
451. Risk Factor
452. 
None
453.  
454. Plugin publication date: 2001/10/17
455. PORT (0/TCP)
456. Plugin ID: 12053
457. Host Fully Qualified Domain Name (FQDN) Resolution
458.  
459. Synopsis
460. 
It was possible to resolve the name of the remote host.
461. List of Hosts
462. 

Iomega-055805.local
463.  
464. Plugin Output
465. 

466. 192.168.1.100 resolves as Iomega-055805.local.
467.  
468.  
469.  
470. Description
471.  
472. 
Nessus was able to resolve the FQDN of the remote host.
473.  
474. Solution
475. 
n/a
476.  
477. Risk Factor
478. 
None
479.  
480. Plugin publication date: 2004/02/11
481. Plugin last modification date: 2010/12/29
482. PORT (0/TCP)
483. Plugin ID: 25220
484. TCP/IP Timestamps Supported
485.  
486. Synopsis
487. 
The remote service implements TCP timestamps.
488. List of Hosts
489. 

Iomega-055805.local
490.  
491.  
492. Description
493.  
494. 
The remote host implements TCP timestamps, as defined by RFC1323. A
495. side effect of this feature is that the uptime of the remote host can
496. sometimes be computed.
497.  
498. Solution
499. 
n/a
500.  
501. See also
502. 
http://www.ietf.org/rfc/rfc1323.txt
503.  
504. Risk Factor
505. 
None
506.  
507. Plugin publication date: 2007/05/16
508. Plugin last modification date: 2010/03/22
509. PORT WWW (9000/TCP)
510. Plugin ID: 24260
511. HyperText Transfer Protocol (HTTP) Information
512.  
513. Synopsis
514. 
Some information about the remote HTTP configuration can be extracted.
515. List of Hosts
516. 

Iomega-055805.local
517.  
518. Plugin Output
519. 

520. Protocol version : HTTP/1.1
521. SSL : no
522. Keep-Alive : no
523. Options allowed : (Not implemented)
524. Headers :
525.  
526. Content-Type: text/html; charset=utf-8
527. Content-Length: 201
528. Date: Tue, 17 Nov 2009 23:18:21 GMT
529. Accept-Ranges: bytes
530. Connection: keep-alive
531. EXT:
532. Server: Linux/2.x.x, UPnP/1.0, pvConnect UPnP SDK/1.0
533.  
534.  
535.  
536.  
537. Description
538.  
539. 
This test gives some information about the remote HTTP protocol - the
540. version used, whether HTTP Keep-Alive and HTTP pipelining are enabled,
541. etc...
542.  
543. This test is informational only and does not denote any security
544. problem.
545.  
546. Solution
547. 
n/a
548.  
549. Risk Factor
550. 
None
551.  
552. Plugin publication date: 2007/01/30
553. PORT WWW (443/TCP)
554. Plugin ID: 24260
555. HyperText Transfer Protocol (HTTP) Information
556.  
557. Synopsis
558. 
Some information about the remote HTTP configuration can be extracted.
559. List of Hosts
560. 

Iomega-055805.local
561.  
562. Plugin Output
563. 

564. Protocol version : HTTP/1.1
565. SSL : yes
566. Keep-Alive : no
567. Options allowed : OPTIONS, GET, HEAD, POST
568. Headers :
569.  
570. Connection: close
571. Transfer-Encoding: chunked
572. Date: Tue, 17 Nov 2009 23:18:21 GMT
573. Server: lighttpd/1.4.19
574.  
575.  
576.  
577.  
578. Description
579.  
580. 
This test gives some information about the remote HTTP protocol - the
581. version used, whether HTTP Keep-Alive and HTTP pipelining are enabled,
582. etc...
583.  
584. This test is informational only and does not denote any security
585. problem.
586.  
587. Solution
588. 
n/a
589.  
590. Risk Factor
591. 
None
592.  
593. Plugin publication date: 2007/01/30
594. PORT WWW (80/TCP)
595. Plugin ID: 24260
596. HyperText Transfer Protocol (HTTP) Information
597.  
598. Synopsis
599. 
Some information about the remote HTTP configuration can be extracted.
600. List of Hosts
601. 

Iomega-055805.local
602.  
603. Plugin Output
604. 

605. Protocol version : HTTP/1.1
606. SSL : no
607. Keep-Alive : no
608. Options allowed : OPTIONS, GET, HEAD, POST
609. Headers :
610.  
611. Connection: close
612. Transfer-Encoding: chunked
613. Date: Tue, 17 Nov 2009 23:18:20 GMT
614. Server: lighttpd/1.4.19
615.  
616.  
617.  
618.  
619. Description
620.  
621. 
This test gives some information about the remote HTTP protocol - the
622. version used, whether HTTP Keep-Alive and HTTP pipelining are enabled,
623. etc...
624.  
625. This test is informational only and does not denote any security
626. problem.
627.  
628. Solution
629. 
n/a
630.  
631. Risk Factor
632. 
None
633.  
634. Plugin publication date: 2007/01/30
635. PORT WWW (9000/TCP)
636. Plugin ID: 10815
637. Web Server Generic XSS
638.  
639. Synopsis
640. 
The remote web server is prone to cross-site scripting attacks.
641. List of Hosts
642. 

Iomega-055805.local
643.  
644. Plugin Output
645. 

646. The request string used to detect this flaw was :
647.  
648. /<script>cross_site_scripting.nasl</script>.asp
649.  
650. The output was :
651.  
652. HTTP/1.1 404 Not Found
653. Content-Type: text/html; charset=utf-8
654. Content-Length: 162
655. Date: Tue, 17 Nov 2009 23:16:44 GMT
656. Accept-Ranges: bytes
657. Connection: keep-alive
658. EXT:
659. Server: Linux/2.x.x, UPnP/1.0, pvConnect UPnP SDK/1.0
660.  
661.  
662. <HTML><HEAD><TITLE>404 Not Found</TITLE></HEAD><BODY><H1>Not Found [...]
663.  
664.  
665.  
666.  
667. Description
668.  
669. 
The remote host is running a web server that fails to adequately
670. sanitize request strings of malicious JavaScript. By leveraging this
671. issue, an attacker may be able to cause arbitrary HTML and script code
672. to be executed in a user's browser within the security context of the
673. affected site.
674.  
675. Solution
676. 
Contact the vendor for a patch or upgrade.
677.  
678. See also
679. 
http://en.wikipedia.org/wiki/Cross-site_scripting
680.  
681. Risk Factor
682. 
Medium/ CVSS Base Score: 4.3
683. (CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N)
684. CVSS Temporal Score: 3.6(CVSS2#E:F/RL:OF/RC:C)
685.  
686. CVE 
CVE-2002-1700
687. CVE-2003-1543
688. CVE-2005-2453
689. CVE-2006-1681
690.  
691. Bugtraq ID
692. 
5011
693. 5305
694. 7344
695. 7353
696. 8037
697. 14473
698. 17408
699.  
700. Other References 
OSVDB:18525
701. OSVDB:24469
702. OSVDB:42314
703. OSVDB:4989
704. OSVDB:58976
705. CWE:79
706. CWE:80
707. CWE:81
708. CWE:83
709. CWE:20
710. CWE:74
711. CWE:442
712. CWE:712
713. CWE:722
714. CWE:725
715. CWE:811
716. CWE:751
717. CWE:801
718. CWE:116
719.  
720. Vulnerability publication date: 2004/04/09
721. Plugin publication date: 2001/11/30
722. Plugin last modification date: 2010/10/11
723. Ease of exploitability : Exploits are available
724. PORT (0/ICMP)
725. Plugin ID: 10114
726. ICMP Timestamp Request Remote Date Disclosure
727.  
728. Synopsis
729. 
It is possible to determine the exact time set on the remote host.
730. List of Hosts
731. 

Iomega-055805.local
732.  
733. Plugin Output
734. 
The difference between the local and remote clocks is -76101 seconds.
735.  
736.  
737.  
738. Description
739.  
740. 
The remote host answers to an ICMP timestamp request. This allows an
741. attacker to know the date which is set on your machine.
742.  
743. This may help him to defeat all your time based authentication
744. protocols.
745.  
746. Solution
747. 
Filter out the ICMP timestamp requests (13), and the outgoing ICMP
748. timestamp replies (14).
749.  
750. Risk Factor
751. 
None
752.  
753. CVE 
CVE-1999-0524
754.  
755. Other References 
OSVDB:94
756. CWE:200
757.  
758. Vulnerability publication date: 1995/01/01
759. Plugin publication date: 1999/08/01
760. Plugin last modification date: 2010/10/06
761. PORT WWW (9000/TCP)
762. Plugin ID: 10107
763. HTTP Server Type and Version
764.  
765. Synopsis
766. 
A web server is running on the remote host.
767. List of Hosts
768. 

Iomega-055805.local
769.  
770. Plugin Output
771. 
The remote web server type is :
772.  
773. Linux/2.x.x, UPnP/1.0, pvConnect UPnP SDK/1.0
774.  
775.  
776. Description
777.  
778. 
This plugin attempts to determine the type and the version of the
779. remote web server.
780.  
781. Solution
782. 
n/a
783.  
784. Risk Factor
785. 
None
786.  
787. Plugin publication date: 2000/01/04
788. Plugin last modification date: 2010/11/22
789. PORT WWW (3689/TCP)
790. Plugin ID: 10107
791. HTTP Server Type and Version
792.  
793. Synopsis
794. 
A web server is running on the remote host.
795. List of Hosts
796. 

Iomega-055805.local
797.  
798. Plugin Output
799. 
The remote web server type is :
800.  
801. mt-daapd/svn-1696
802.  
803.  
804. Description
805.  
806. 
This plugin attempts to determine the type and the version of the
807. remote web server.
808.  
809. Solution
810. 
n/a
811.  
812. Risk Factor
813. 
None
814.  
815. Plugin publication date: 2000/01/04
816. Plugin last modification date: 2010/11/22
817. PORT WWW (443/TCP)
818. Plugin ID: 10107
819. HTTP Server Type and Version
820.  
821. Synopsis
822. 
A web server is running on the remote host.
823. List of Hosts
824. 

Iomega-055805.local
825.  
826. Plugin Output
827. 
The remote web server type is :
828.  
829. lighttpd/1.4.19
830.  
831.  
832. Description
833.  
834. 
This plugin attempts to determine the type and the version of the
835. remote web server.
836.  
837. Solution
838. 
n/a
839.  
840. Risk Factor
841. 
None
842.  
843. Plugin publication date: 2000/01/04
844. Plugin last modification date: 2010/11/22
845. PORT WWW (80/TCP)
846. Plugin ID: 10107
847. HTTP Server Type and Version
848.  
849. Synopsis
850. 
A web server is running on the remote host.
851. List of Hosts
852. 

Iomega-055805.local
853.  
854. Plugin Output
855. 
The remote web server type is :
856.  
857. lighttpd/1.4.19
858.  
859.  
860. Description
861.  
862. 
This plugin attempts to determine the type and the version of the
863. remote web server.
864.  
865. Solution
866. 
n/a
867.  
868. Risk Factor
869. 
None
870.  
871. Plugin publication date: 2000/01/04
872. Plugin last modification date: 2010/11/22
873. PORT CIFS (445/TCP)
874. Plugin ID: 42411
875. Microsoft Windows SMB Shares Unprivileged Access
876.  
877. Synopsis
878. 
It is possible to access a network share.
879. List of Hosts
880. 

Iomega-055805.local
881.  
882. Plugin Output
883. 

884. The following shares can be accessed as sbdmjsap :
885.  
886. - ActiveFolders - (readable,writable)
887. + Content of this share :
888. ..
889. demo
890. ftp
891. torrents
892. DefaultPicture.bmp
893.  
894. - photos - (readable,writable)
895. + Content of this share :
896. ..
897. DefaultPicture.bmp
898.  
899. - movies - (readable,writable)
900. + Content of this share :
901. ..
902. DefaultPicture.bmp
903.  
904. - backups - (readable,writable)
905. + Content of this share :
906. ..
907. DefaultPicture.bmp
908.  
909. - public - (readable,writable)
910. + Content of this share :
911. ..
912. DefaultPicture.bmp
913.  
914. - music - (readable,writable)
915. + Content of this share :
916. ..
917. DefaultPicture.bmp
918.  
919.  
920.  
921.  
922. Description
923.  
924. 
The remote has one or more Windows shares that can be accessed through
925. the network with the given credentials.
926.  
927. Depending on the share rights, it may allow an attacker to read/write
928. confidential data.
929.  
930. Solution
931. 
To restrict access under Windows, open Explorer, do a right click on
932. each share, go to the 'sharing' tab, and click on 'permissions'.
933.  
934. Risk Factor
935. 
High/ CVSS Base Score: 7.5
936. (CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)
937. CVSS Temporal Score: 7.5(CVSS2#E:H/RL:U/RC:ND)
938.  
939. CVE 
CVE-1999-0519
940. CVE-1999-0520
941.  
942. Bugtraq ID
943. 
8026
944.  
945. Other References 
OSVDB:299
946.  
947. Vulnerability publication date: 1999/07/14
948. Plugin publication date: 2009/11/06
949. Plugin last modification date: 2011/01/04
950. Ease of exploitability : No exploit is required
951. PORT WWW (9000/TCP)
952. Plugin ID: 11032
953. Web Server Directory Enumeration
954.  
955. Synopsis
956. 
It is possible to enumerate directories on the web server.
957. List of Hosts
958. 

Iomega-055805.local
959.  
960. Plugin Output
961. 

962. The following directories were discovered:
963. /config, /help, /images, /setup
964.  
965. While this is not, in and of itself, a bug, you should manually inspect
966. these directories to ensure that they are in compliance with company
967. security standards
968.  
969.  
970.  
971. Description
972.  
973. 
This plugin attempts to determine the presence of various common
974. directories on the remote web server. By sending a request for a
975. directory, the web server response code indicates if it is a valid
976. directory or not.
977.  
978. Solution
979. 
n/a
980.  
981. See also
982. 
http://projects.webappsec.org/Predictable-Resource-Location
983.  
984. Risk Factor
985. 
None
986.  
987. Other References 
OWASP:OWASP-CM-006
988.  
989. Plugin publication date: 2002/06/26
990. Plugin last modification date: 2010/11/07
991. PORT WWW (443/TCP)
992. Plugin ID: 11032
993. Web Server Directory Enumeration
994.  
995. Synopsis
996. 
It is possible to enumerate directories on the web server.
997. List of Hosts
998. 

Iomega-055805.local
999.  
1000. Plugin Output
1001. 

1002. The following directories were discovered:
1003. /demo, /css, /help, /images, /js, /php
1004.  
1005. While this is not, in and of itself, a bug, you should manually inspect
1006. these directories to ensure that they are in compliance with company
1007. security standards
1008.  
1009.  
1010.  
1011. Description
1012.  
1013. 
This plugin attempts to determine the presence of various common
1014. directories on the remote web server. By sending a request for a
1015. directory, the web server response code indicates if it is a valid
1016. directory or not.
1017.  
1018. Solution
1019. 
n/a
1020.  
1021. See also
1022. 
http://projects.webappsec.org/Predictable-Resource-Location
1023.  
1024. Risk Factor
1025. 
None
1026.  
1027. Other References 
OWASP:OWASP-CM-006
1028.  
1029. Plugin publication date: 2002/06/26
1030. Plugin last modification date: 2010/11/07
1031. PORT WWW (80/TCP)
1032. Plugin ID: 11032
1033. Web Server Directory Enumeration
1034.  
1035. Synopsis
1036. 
It is possible to enumerate directories on the web server.
1037. List of Hosts
1038. 

Iomega-055805.local
1039.  
1040. Plugin Output
1041. 

1042. The following directories were discovered:
1043. /cgi-bin, /demo, /css, /help, /images, /js, /php
1044.  
1045. While this is not, in and of itself, a bug, you should manually inspect
1046. these directories to ensure that they are in compliance with company
1047. security standards
1048.  
1049.  
1050.  
1051. Description
1052.  
1053. 
This plugin attempts to determine the presence of various common
1054. directories on the remote web server. By sending a request for a
1055. directory, the web server response code indicates if it is a valid
1056. directory or not.
1057.  
1058. Solution
1059. 
n/a
1060.  
1061. See also
1062. 
http://projects.webappsec.org/Predictable-Resource-Location
1063.  
1064. Risk Factor
1065. 
None
1066.  
1067. Other References 
OWASP:OWASP-CM-006
1068.  
1069. Plugin publication date: 2002/06/26
1070. Plugin last modification date: 2010/11/07
1071. PORT WWW (9000/TCP)
1072. Plugin ID: 22964
1073. Service Detection
1074.  
1075. Synopsis
1076. 
The remote service could be identified.
1077. List of Hosts
1078. 

Iomega-055805.local
1079.  
1080. Plugin Output
1081. 
A web server is running on this port.
1082.  
1083.  
1084. Description
1085.  
1086. 
It was possible to identify the remote service by its banner or by looking
1087. at the error message it sends when it receives an HTTP request.
1088.  
1089. Solution
1090. 
n/a
1091.  
1092. Risk Factor
1093. 
None
1094.  
1095. Plugin publication date: 2007/08/19
1096. Plugin last modification date: 2010/11/18
1097. PORT WWW (3689/TCP)
1098. Plugin ID: 22964
1099. Service Detection
1100.  
1101. Synopsis
1102. 
The remote service could be identified.
1103. List of Hosts
1104. 

Iomega-055805.local
1105.  
1106. Plugin Output
1107. 
A web server is running on this port.
1108.  
1109.  
1110. Description
1111.  
1112. 
It was possible to identify the remote service by its banner or by looking
1113. at the error message it sends when it receives an HTTP request.
1114.  
1115. Solution
1116. 
n/a
1117.  
1118. Risk Factor
1119. 
None
1120.  
1121. Plugin publication date: 2007/08/19
1122. Plugin last modification date: 2010/11/18
1123. PORT WWW (443/TCP)
1124. Plugin ID: 22964
1125. Service Detection
1126.  
1127. Synopsis
1128. 
The remote service could be identified.
1129. List of Hosts
1130. 

Iomega-055805.local
1131.  
1132. Plugin Output
1133. 
A web server is running on this port through TLSv1.
1134. 

Iomega-055805.local
1135.  
1136. Plugin Output
1137. 
A TLSv1 server answered on this port.
1138.  
1139.  
1140.  
1141. Description
1142.  
1143. 
It was possible to identify the remote service by its banner or by looking
1144. at the error message it sends when it receives an HTTP request.
1145.  
1146. Solution
1147. 
n/a
1148.  
1149. Risk Factor
1150. 
None
1151.  
1152. Plugin publication date: 2007/08/19
1153. Plugin last modification date: 2010/11/18
1154. PORT WWW (80/TCP)
1155. Plugin ID: 22964
1156. Service Detection
1157.  
1158. Synopsis
1159. 
The remote service could be identified.
1160. List of Hosts
1161. 

Iomega-055805.local
1162.  
1163. Plugin Output
1164. 
A web server is running on this port.
1165.  
1166.  
1167. Description
1168.  
1169. 
It was possible to identify the remote service by its banner or by looking
1170. at the error message it sends when it receives an HTTP request.
1171.  
1172. Solution
1173. 
n/a
1174.  
1175. Risk Factor
1176. 
None
1177.  
1178. Plugin publication date: 2007/08/19
1179. Plugin last modification date: 2010/11/18
1180. PORT CIFS (445/TCP)
1181. Plugin ID: 17651
1182. Obtains the password policy
1183.  
1184. Synopsis
1185. 
It is possible to retrieve the remote host's password policy using the\supplied credentials.
1186. List of Hosts
1187. 

Iomega-055805.local
1188.  
1189. Plugin Output
1190. 
The following password policy is defined on the remote host:
1191.  
1192. Minimum password len: 5
1193. Password history len: 0
1194. Maximum password age (d): No limit
1195. Password must meet complexity requirements: Disabled
1196. Minimum password age (d): 0
1197. Forced logoff time (s): Not set
1198. Locked account time (s): 1800
1199. Time between failed logon (s): 1800
1200. Number of invalid logon before locked out (s): 0
1201.  
1202.  
1203.  
1204. Description
1205.  
1206. 
Using the supplied credentials it was possible to extract the
1207. password policy for the remote Windows host. The password policy must
1208. conform to the Informational System Policy.
1209.  
1210. Solution
1211. 
n/a
1212.  
1213. Risk Factor
1214. 
None
1215.  
1216. Plugin publication date: 2005/03/30
1217. PORT WWW (443/TCP)
1218. Plugin ID: 42873
1219. SSL Medium Strength Cipher Suites Supported
1220.  
1221. Synopsis
1222. 
The remote service supports the use of medium strength SSL ciphers.
1223. List of Hosts
1224. 

Iomega-055805.local
1225.  
1226. Plugin Output
1227. 

1228. Here are the medium strength SSL ciphers supported by the remote server :
1229.  
1230. Medium Strength Ciphers (>= 56-bit and < 112-bit key)
1231. SSLv2
1232. DES-CBC-MD5 Kx=RSA Au=RSA Enc=DES(56) Mac=MD5
1233. SSLv3
1234. DES-CBC-SHA Kx=RSA Au=RSA Enc=DES(56) Mac=SHA1
1235. TLSv1
1236. DES-CBC-SHA Kx=RSA Au=RSA Enc=DES(56) Mac=SHA1
1237.  
1238. The fields above are :
1239.  
1240. {OpenSSL ciphername}
1241. Kx={key exchange}
1242. Au={authentication}
1243. Enc={symmetric encryption method}
1244. Mac={message authentication code}
1245. {export flag}
1246.  
1247.  
1248.  
1249. Description
1250.  
1251. 
The remote host supports the use of SSL ciphers that offer medium
1252. strength encryption, which we currently regard as those with key
1253. lengths at least 56 bits and less than 112 bits.
1254.  
1255. Note: This is considerably easier to exploit if the attacker is on the
1256. same physical network.
1257.  
1258. Solution
1259. 
Reconfigure the affected application if possible to avoid use of
1260. medium strength ciphers.
1261.  
1262. Risk Factor
1263. 
Medium/ CVSS Base Score: 4.3
1264. (CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N)
1265.  
1266. Plugin publication date: 2009/11/23
1267. Plugin last modification date: 2010/10/08
1268. PORT (0/TCP)
1269. Plugin ID: 10180
1270. Ping the remote host
1271.  
1272. Synopsis
1273. 
It was possible to identify the status of the remote host (alive or dead)
1274. List of Hosts
1275. 

Iomega-055805.local
1276.  
1277. Plugin Output
1278. 
The remote host is up
1279. The host replied to an ARP who-is query.
1280. Hardware address : 00:d0:b8:05:58:05
1281.  
1282.  
1283. Description
1284.  
1285. 
This plugin attempts to determine if the remote host is alive using one or more
1286. ping types :
1287.  
1288. - An ARP ping, provided the host is on the local subnet
1289. and Nessus is running over ethernet.
1290.  
1291. - An ICMP ping.
1292.  
1293. - A TCP ping, in which the plugin sends to the remote host
1294. a packet with the flag SYN, and the host will reply with
1295. a RST or a SYN/ACK.
1296.  
1297. - A UDP ping (DNS, RPC, NTP, etc).
1298.  
1299. Solution
1300. 
n/a
1301.  
1302. Risk Factor
1303. 
None
1304.  
1305. Plugin publication date: 1999/06/24
1306. Plugin last modification date: 2010/12/30
1307. PORT CIFS (445/TCP)
1308. Plugin ID: 10860
1309. SMB Use Host SID to Enumerate Local Users
1310.  
1311. Synopsis
1312. 
It is possible to enumerate local users.
1313. List of Hosts
1314. 

Iomega-055805.local
1315.  
1316. Plugin Output
1317. 

1318. - nobody (id 501, Guest account)
1319.  
1320. Note that, in addition to the Administrator and Guest accounts, Nessus
1321. has enumerated only those local users with IDs between 1000 and 1200.
1322. To use a different range, edit the scan policy and change the 'Start
1323. UID' and/or 'End UID' preferences for this plugin, then re-run the
1324. scan.
1325.  
1326.  
1327.  
1328. Description
1329.  
1330. 
Using the host security identifier (SID), it is possible to enumerate local users
1331. on the remote Windows system.
1332.  
1333. Solution
1334. 
n/a
1335.  
1336. Risk Factor
1337. 
None
1338.  
1339. CVE 
CVE-2000-1200
1340.  
1341. Bugtraq ID
1342. 
959
1343.  
1344. Other References 
OSVDB:714
1345.  
1346. Vulnerability publication date: 1998/04/28
1347. Plugin publication date: 2002/02/13
1348. Plugin last modification date: 2010/10/06
1349. Ease of exploitability : Exploits are available
1350. PORT CIFS (445/TCP)
1351. Plugin ID: 26919
1352. SMB Guest Account Local User Access
1353.  
1354. Synopsis
1355. 
It is possible to log into the remote host.
1356. List of Hosts
1357. 

Iomega-055805.local
1358.  
1359.  
1360. Description
1361.  
1362. 
The remote host is running one of the Microsoft Windows operating
1363. systems. It was possible to log into it as a guest user using a
1364. random account.
1365.  
1366. Solution
1367. 
In the group policy change the setting for
1368. 'Network access: Sharing and security model for local accounts' from
1369. 'Guest only - local users authenticate as Guest' to
1370. 'Classic - local users authenticate as themselves'.
1371.  
1372. Risk Factor
1373. 
Medium/ CVSS Base Score: 5.0
1374. (CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N)
1375.  
1376. CVE 
CVE-1999-0505
1377.  
1378. Plugin publication date: 2007/10/04
1379. PORT NETBIOS-NS (137/UDP)
1380. Plugin ID: 10150
1381. Windows NetBIOS / SMB Remote Host Information Disclosure
1382.  
1383. Synopsis
1384. 
It is possible to obtain the network name of the remote host.
1385. List of Hosts
1386. 

Iomega-055805.local
1387.  
1388. Plugin Output
1389. 
The following 5 NetBIOS names have been gathered :
1390.  
1391. IOMEGA-055805 = Computer name
1392. IOMEGA-055805 = Messenger Service
1393. IOMEGA-055805 = File Server Service
1394. WORKGROUP = Browser Service Elections
1395. WORKGROUP = Workgroup / Domain name
1396.  
1397. This SMB server seems to be a SAMBA server (MAC address is NULL).
1398.  
1399.  
1400. Description
1401.  
1402. 
The remote host listens on UDP port 137 or TCP port 445 and replies to
1403. NetBIOS nbtscan or SMB requests.
1404.  
1405. Note that this plugin gathers information to be used in other plugins
1406. but does not itself generate a report.
1407.  
1408. Solution
1409. 
n/a
1410.  
1411. Risk Factor
1412. 
None
1413.  
1414. Plugin publication date: 1999/10/12
1415. Plugin last modification date: 2010/07/14
1416. PORT WWW (443/TCP)
1417. Plugin ID: 40984
1418. Browsable Web Directories
1419.  
1420. Synopsis
1421. 
Some directories on the remote web server are browsable.
1422. List of Hosts
1423. 

Iomega-055805.local
1424.  
1425. Plugin Output
1426. 

1427. The following directories are browsable :
1428.  
1429. /php/ytlibrary/Zend/Validate/Hostname/
1430. /php/ytlibrary/Zend/Http/Client/
1431. /php/ytlibrary/Zend/Gdata/YouTube/
1432. /php/ytlibrary/Zend/Gdata/Spreadsheets/
1433. /php/ytlibrary/Zend/Gdata/Photos/
1434. /php/ytlibrary/Zend/Gdata/Media/
1435. /php/ytlibrary/Zend/Gdata/Kind/
1436. /php/ytlibrary/Zend/Gdata/Health/
1437. /php/ytlibrary/Zend/Gdata/Geo/
1438. /php/ytlibrary/Zend/Gdata/Gbase/
1439. /php/ytlibrary/Zend/Gdata/Gapps/
1440. /php/ytlibrary/Zend/Http/
1441. /php/ytlibrary/Zend/Gdata/
1442. /php/lib/PEAR/Net/
1443. /php/lib/PEAR/HTTP/
1444. /php/lib/PEAR/DB/
1445. /php/facebook-api/jsonwrapper/JSON/
1446. /js/GreyBox_v5_53/greybox_source/
1447. /php/ytlibrary/Zend/
1448. /php/lib/PEAR/
1449. /php/facebook-api/jsonwrapper/
1450. /js/greybox/
1451. /js/GreyBox_v5_53/
1452. /php/ytlibrary/
1453. /php/lib/
1454. /php/facebook-api/
1455. /demo/
1456. /css/
1457. /help/
1458. /images/
1459. /js/
1460. /php/
1461. /php/ytlibrary/Zend/Uri/
1462. /php/ytlibrary/Zend/Validate/
1463. /js/GreyBox_v5_53/greybox_source/base/
1464. /js/GreyBox_v5_53/greybox_source/gallery/
1465. /js/GreyBox_v5_53/greybox_source/set/
1466. /js/GreyBox_v5_53/greybox_source/window/
1467. /help/bp/javascript/
1468. /help/cs/javascript/
1469. /help/ct/javascript/
1470. /help/de/javascript/
1471. /help/en/javascript/
1472. /help/es/javascript/
1473. /help/fr/javascript/
1474. /help/ital/javascript/
1475. /help/jp/javascript/
1476. /help/ru/javascript/
1477. /php/lib/PEAR/HTTP/Request/
1478. /php/ytlibrary/Zend/Gdata/App/
1479. /php/ytlibrary/Zend/Gdata/Books/
1480. /php/ytlibrary/Zend/Gdata/Calendar/
1481. /php/ytlibrary/Zend/Gdata/Docs/
1482. /php/ytlibrary/Zend/Gdata/DublinCore/
1483. /php/ytlibrary/Zend/Gdata/Exif/
1484. /php/ytlibrary/Zend/Gdata/Extension/
1485.  
1486.  
1487.  
1488. Description
1489.  
1490. 
Miscellaneous Nessus plugins identified directories on this web
1491. server that are browsable.
1492.  
1493. Solution
1494. 
Make sure that browsable directories do not leak confidential
1495. informative or give access to sensitive resources. And use access
1496. restrictions or disable directory indexing for any that do.
1497.  
1498. See also
1499. 
http://projects.webappsec.org/Directory-Indexing
1500.  
1501. Risk Factor
1502. 
None
1503.  
1504. Plugin publication date: 2009/09/15
1505. PORT WWW (80/TCP)
1506. Plugin ID: 40984
1507. Browsable Web Directories
1508.  
1509. Synopsis
1510. 
Some directories on the remote web server are browsable.
1511. List of Hosts
1512. 

Iomega-055805.local
1513.  
1514. Plugin Output
1515. 

1516. The following directories are browsable :
1517.  
1518. /php/ytlibrary/Zend/Validate/Hostname/
1519. /php/ytlibrary/Zend/Http/Client/
1520. /php/ytlibrary/Zend/Gdata/YouTube/
1521. /php/ytlibrary/Zend/Gdata/Spreadsheets/
1522. /php/ytlibrary/Zend/Gdata/Photos/
1523. /php/ytlibrary/Zend/Gdata/Media/
1524. /php/ytlibrary/Zend/Gdata/Kind/
1525. /php/ytlibrary/Zend/Gdata/Health/
1526. /php/ytlibrary/Zend/Gdata/Geo/
1527. /php/ytlibrary/Zend/Gdata/Gbase/
1528. /php/ytlibrary/Zend/Gdata/Gapps/
1529. /php/ytlibrary/Zend/Http/
1530. /php/ytlibrary/Zend/Gdata/
1531. /php/lib/PEAR/Net/
1532. /php/lib/PEAR/HTTP/
1533. /php/lib/PEAR/DB/
1534. /php/facebook-api/jsonwrapper/JSON/
1535. /js/GreyBox_v5_53/greybox_source/
1536. /php/ytlibrary/Zend/
1537. /php/lib/PEAR/
1538. /php/facebook-api/jsonwrapper/
1539. /js/greybox/
1540. /js/GreyBox_v5_53/
1541. /php/ytlibrary/
1542. /php/lib/
1543. /php/facebook-api/
1544. /demo/
1545. /css/
1546. /help/
1547. /images/
1548. /js/
1549. /php/
1550. /php/ytlibrary/Zend/Uri/
1551. /php/ytlibrary/Zend/Validate/
1552. /js/GreyBox_v5_53/greybox_source/base/
1553. /js/GreyBox_v5_53/greybox_source/gallery/
1554. /js/GreyBox_v5_53/greybox_source/set/
1555. /js/GreyBox_v5_53/greybox_source/window/
1556. /help/bp/javascript/
1557. /help/cs/javascript/
1558. /help/ct/javascript/
1559. /help/de/javascript/
1560. /help/en/javascript/
1561. /help/es/javascript/
1562. /help/fr/javascript/
1563. /help/ital/javascript/
1564. /help/jp/javascript/
1565. /help/ru/javascript/
1566. /php/lib/PEAR/HTTP/Request/
1567. /php/ytlibrary/Zend/Gdata/App/
1568. /php/ytlibrary/Zend/Gdata/Books/
1569. /php/ytlibrary/Zend/Gdata/Calendar/
1570. /php/ytlibrary/Zend/Gdata/Docs/
1571. /php/ytlibrary/Zend/Gdata/DublinCore/
1572. /php/ytlibrary/Zend/Gdata/Exif/
1573. /php/ytlibrary/Zend/Gdata/Extension/
1574.  
1575.  
1576.  
1577. Description
1578.  
1579. 
Miscellaneous Nessus plugins identified directories on this web
1580. server that are browsable.
1581.  
1582. Solution
1583. 
Make sure that browsable directories do not leak confidential
1584. informative or give access to sensitive resources. And use access
1585. restrictions or disable directory indexing for any that do.
1586.  
1587. See also
1588. 
http://projects.webappsec.org/Directory-Indexing
1589.  
1590. Risk Factor
1591. 
None
1592.  
1593. Plugin publication date: 2009/09/15
1594. PORT CIFS (445/TCP)
1595. Plugin ID: 10859
1596. SMB LsaQueryInformationPolicy Function SID Enumeration
1597.  
1598. Synopsis
1599. 
It is possible to obtain the host SID for the remote host.
1600. List of Hosts
1601. 

Iomega-055805.local
1602.  
1603. Plugin Output
1604. 

1605. The remote host SID value is :
1606.  
1607. 1-5-21-3715228791-1718835495-3915224457
1608.  
1609. The value of 'RestrictAnonymous' setting is : unknown
1610.  
1611.  
1612.  
1613. Description
1614.  
1615. 
By emulating the call to LsaQueryInformationPolicy(), it was possible
1616. to obtain the host SID (Security Identifier).
1617.  
1618. The host SID can then be used to get the list of local users.
1619.  
1620. Solution
1621. 
You can prevent anonymous lookups of the host SID by setting the
1622. 'RestrictAnonymous' registry setting to an appropriate value.
1623.  
1624. Refer to the 'See also' section for guidance.
1625.  
1626. See also
1627. 
http://technet.microsoft.com/en-us/library/bb418944.aspx
1628.  
1629. Risk Factor
1630. 
None
1631.  
1632. CVE 
CVE-2000-1200
1633.  
1634. Bugtraq ID
1635. 
959
1636.  
1637. Other References 
OSVDB:715
1638.  
1639. Vulnerability publication date: 2000/01/31
1640. Plugin publication date: 2002/02/13
1641. Plugin last modification date: 2010/10/06
1642. Ease of exploitability : Exploits are available
1643. PORT CIFS (445/TCP)
1644. Plugin ID: 25240
1645. Samba Server Detection
1646.  
1647. Synopsis
1648. 
An SMB server is running on the remote host.
1649. List of Hosts
1650. 

Iomega-055805.local
1651.  
1652.  
1653. Description
1654.  
1655. 
The remote host is running Samba, a CIFS/SMB server for Unix.
1656.  
1657. Solution
1658. 
n/a
1659.  
1660. See also
1661. 
http://www.samba.org/
1662.  
1663. Risk Factor
1664. 
None
1665.  
1666. Plugin publication date: 2007/05/16
1667. PORT WWW (443/TCP)
1668. Plugin ID: 45410
1669. SSL Certificate commonName Mismatch
1670.  
1671. Synopsis
1672. 
The SSL certificate commonName does not match the host name.
1673. List of Hosts
1674. 

Iomega-055805.local
1675.  
1676. Plugin Output
1677. 

1678. The host name known by Nessus is : iomega-055805.local
1679. The CommonName of the certificate is : Iomega.
1680.  
1681.  
1682.  
1683. Description
1684.  
1685. 
This service presents an SSL certificate for which the 'commonName'
1686. (CN) does not match the host name on which the service listens.
1687.  
1688. Solution
1689. 
If the machine has several names, make sure that users connect to the
1690. service through the DNS host name that matches the common name in the
1691. certificate.
1692.  
1693. Risk Factor
1694. 
None
1695.  
1696. Plugin publication date: 2010/04/03
1697. Plugin last modification date: 2010/06/14
1698. PORT (0/TCP)
1699. Plugin ID: 11936
1700. OS Identification
1701.  
1702. Synopsis
1703. 
It is possible to guess the remote operating system
1704. List of Hosts
1705. 

Iomega-055805.local
1706.  
1707. Plugin Output
1708. 

1709. Remote operating system : Linux Kernel 2.4
1710. Linux Kernel 2.6
1711. Confidence Level : 54
1712. Method : SinFP
1713.  
1714.  
1715. The remote host is running one of these operating systems :
1716. Linux Kernel 2.4
1717. Linux Kernel 2.6
1718.  
1719.  
1720. Description
1721.  
1722. 
Using a combination of remote probes (TCP/IP, SMB, HTTP, NTP, SNMP, etc...)
1723. it is possible to guess the name of the remote operating system in use, and
1724. sometimes its version
1725.  
1726. Solution
1727. 
N/A
1728.  
1729. Risk Factor
1730. 
None
1731.  
1732. Plugin publication date: 2003/12/09
1733. Plugin last modification date: 2010/11/10
1734. PORT WWW (443/TCP)
1735. Plugin ID: 21643
1736. SSL Cipher Suites Supported
1737.  
1738. Synopsis
1739. 
The remote service encrypts communications using SSL.
1740. List of Hosts
1741. 

Iomega-055805.local
1742.  
1743. Plugin Output
1744. 

1745. Here is the list of SSL ciphers supported by the remote server :
1746.  
1747. Low Strength Ciphers (< 56-bit key)
1748. SSLv2
1749. EXP-RC2-CBC-MD5 Kx=RSA(512) Au=RSA Enc=RC2(40) Mac=MD5 export
1750. EXP-RC4-MD5 Kx=RSA(512) Au=RSA Enc=RC4(40) Mac=MD5 export
1751.  
1752. Medium Strength Ciphers (>= 56-bit and < 112-bit key)
1753. SSLv2
1754. DES-CBC-MD5 Kx=RSA Au=RSA Enc=DES(56) Mac=MD5
1755. SSLv3
1756. DES-CBC-SHA Kx=RSA Au=RSA Enc=DES(56) Mac=SHA1
1757. TLSv1
1758. DES-CBC-SHA Kx=RSA Au=RSA Enc=DES(56) Mac=SHA1
1759.  
1760. High Strength Ciphers (>= 112-bit key)
1761. SSLv2
1762. DES-CBC3-MD5 Kx=RSA Au=RSA Enc=3DES(168) Mac=MD5
1763. RC2-CBC-MD5 Kx=RSA Au=RSA Enc=RC2(128) Mac=MD5
1764. RC4-MD5 Kx=RSA Au=RSA Enc=RC4(128) Mac=MD5
1765. SSLv3
1766. DES-CBC3-SHA Kx=RSA Au=RSA Enc=3DES(168) Mac=SHA1
1767. RC4-MD5 Kx=RSA Au=RSA Enc=RC4(128) Mac=MD5
1768. RC4-SHA Kx=RSA Au=RSA Enc=RC4(128) Mac=SHA1
1769. TLSv1
1770. DES-CBC3-SHA Kx=RSA Au=RSA Enc=3DES(168) Mac=SHA1
1771. AES128-SHA Kx=RSA Au=RSA Enc=AES(128) Mac=SHA1
1772. AES256-SHA Kx=RSA Au=RSA Enc=AES(256) Mac=SHA1
1773. RC4-MD5 Kx=RSA Au=RSA Enc=RC4(128) Mac=MD5
1774. RC4-SHA Kx=RSA Au=RSA Enc=RC4(128) Mac=SHA1
1775.  
1776. The fields above are :
1777.  
1778. {OpenSSL ciphername}
1779. Kx={key exchange}
1780. Au={authentication}
1781. Enc={symmetric encryption method}
1782. Mac={message authentication code}
1783. {export flag}
1784.  
1785.  
1786.  
1787. Description
1788.  
1789. 
This script detects which SSL ciphers are supported by the remote
1790. service for encrypting communications.
1791.  
1792. Solution
1793. 
n/a
1794.  
1795. See also
1796. 
http://www.openssl.org/docs/apps/ciphers.html
1797.  
1798. Risk Factor
1799. 
None
1800.  
1801. Plugin publication date: 2006/06/05
1802. Plugin last modification date: 2010/07/21
1803. PORT CIFS (445/TCP)
1804. Plugin ID: 11011
1805. SMB Service Detection
1806.  
1807. Synopsis
1808. 
A file / print sharing service is listening on the remote host.
1809. List of Hosts
1810. 

Iomega-055805.local
1811.  
1812. Plugin Output
1813. 

1814. A CIFS server is running on this port.
1815.  
1816.  
1817.  
1818. Description
1819.  
1820. 
The remote service understands the CIFS (Common Internet File System)
1821. or Server Message Block (SMB) protocol, used to provide shared access
1822. to files, printers, etc between nodes on a network.
1823.  
1824. Solution
1825. 
n/a
1826.  
1827. Risk Factor
1828. 
None
1829.  
1830. Plugin publication date: 2002/06/05
1831. PORT SMB (139/TCP)
1832. Plugin ID: 11011
1833. SMB Service Detection
1834.  
1835. Synopsis
1836. 
A file / print sharing service is listening on the remote host.
1837. List of Hosts
1838. 

Iomega-055805.local
1839.  
1840. Plugin Output
1841. 

1842. An SMB server is running on this port.
1843.  
1844.  
1845.  
1846. Description
1847.  
1848. 
The remote service understands the CIFS (Common Internet File System)
1849. or Server Message Block (SMB) protocol, used to provide shared access
1850. to files, printers, etc between nodes on a network.
1851.  
1852. Solution
1853. 
n/a
1854.  
1855. Risk Factor
1856. 
None
1857.  
1858. Plugin publication date: 2002/06/05
1859. PORT (0/TCP)
1860. Plugin ID: 35716
1861. Ethernet card brand
1862.  
1863. Synopsis
1864. 
The manufacturer can be deduced from the Ethernet OUI.
1865. List of Hosts
1866. 

Iomega-055805.local
1867.  
1868. Plugin Output
1869. 

1870. The following card manufacturers were identified :
1871.  
1872. 00:d0:b8:05:58:05 : Iomega Corporation
1873.  
1874.  
1875.  
1876. Description
1877.  
1878. 
Each ethernet MAC address starts with a 24-bit 'Organizationally
1879. Unique Identifier'.
1880. These OUI are registered by IEEE.
1881.  
1882. Solution
1883. 
n/a
1884.  
1885. See also
1886. 
http://standards.ieee.org/faqs/OUI.html
1887. http://standards.ieee.org/regauth/oui/index.shtml
1888.  
1889. Risk Factor
1890. 
None
1891.  
1892. Plugin publication date: 2009/02/19
1893. Plugin last modification date: 2010/10/26
1894. PORT WWW (443/TCP)
1895. Plugin ID: 42880
1896. SSL / TLS Renegotiation Handshakes MiTM Plaintext Data Injection
1897.  
1898. Synopsis
1899. 
The remote service allows renegotiation of TLS / SSL connections.
1900. List of Hosts
1901. 

Iomega-055805.local
1902.  
1903.  
1904. Description
1905.  
1906. 
The remote service encrypts traffic using TLS / SSL but allows a
1907. client to renegotiate the connection after the initial handshake. An
1908. unauthenticated remote attacker may be able to leverage this issue to
1909. inject an arbitrary amount of plaintext into the beginning of the
1910. application protocol stream, which could facilitate man-in-the-middle
1911. attacks if the service assumes that the sessions before and after
1912. renegotiation are from the same 'client' and merges them at the
1913. application layer.
1914.  
1915. Solution
1916. 
Contact the vendor for specific patch information.
1917.  
1918. See also
1919. 
http://extendedsubset.com/?p=8
1920. http://www.ietf.org/mail-archive/web/tls/current/msg03948.html
1921. http://www.kb.cert.org/vuls/id/120541
1922. http://www.g-sec.lu/practicaltls.pdf
1923. http://tools.ietf.org/html/rfc5746
1924.  
1925. Risk Factor
1926. 
Low/ CVSS Base Score: 2.6
1927. (CVSS2#AV:N/AC:H/Au:N/C:N/I:P/A:N)
1928. CVSS Temporal Score: 2.1(CVSS2#E:F/RL:OF/RC:C)
1929.  
1930. CVE 
CVE-2009-3555
1931.  
1932. Bugtraq ID
1933. 
36935
1934.  
1935. Other References 
OSVDB:59968
1936. OSVDB:59969
1937. OSVDB:59970
1938. OSVDB:59971
1939. OSVDB:59972
1940. OSVDB:59973
1941. OSVDB:59974
1942. OSVDB:60521
1943. OSVDB:61234
1944. OSVDB:61718
1945. OSVDB:62210
1946. OSVDB:62536
1947. CWE:310
1948.  
1949. Vulnerability publication date: 2009/11/04
1950. Patch publication date: 2009/11/05
1951. Plugin publication date: 2009/11/24
1952. Plugin last modification date: 2010/10/06
1953. Ease of exploitability : Exploits are available
1954. PORT WWW (443/TCP)
1955. Plugin ID: 45411
1956. SSL Certificate with Wrong Hostname
1957.  
1958. Synopsis
1959. 
The SSL certificate for this service is for a different host.
1960. List of Hosts
1961. 

Iomega-055805.local
1962.  
1963. Plugin Output
1964. 

1965. The following hostnames were checked :
1966. Iomega
1967.  
1968.  
1969.  
1970. Description
1971.  
1972. 
The commonName (CN) of the SSL certificate presented on this port is
1973. for a different machine.
1974.  
1975. Solution
1976. 
Purchase or generate a proper certificate for this service.
1977.  
1978. Risk Factor
1979. 
Medium/ CVSS Base Score: 5.0
1980. (CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N)
1981.  
1982. Plugin publication date: 2010/04/03
1983. Plugin last modification date: 2010/09/22
1984. PORT WWW (9000/TCP)
1985. Plugin ID: 44135
1986. Web Server Generic Cookie Injection
1987.  
1988. Synopsis
1989. 
The remote web server is prone to a cookie injection attack.
1990. List of Hosts
1991. 

Iomega-055805.local
1992.  
1993. Plugin Output
1994. 

1995. The request string used to detect this flaw was :
1996.  
1997. /08fs7qiz.asp?<script>document.cookie=%22testtbfv=5086;%22</script>
1998.  
1999. The output was :
2000.  
2001. HTTP/1.1 404 Not Found
2002. Content-Type: text/html; charset=utf-8
2003. Content-Length: 178
2004. Date: Tue, 17 Nov 2009 23:15:53 GMT
2005. Accept-Ranges: bytes
2006. Connection: keep-alive
2007. EXT:
2008. Server: Linux/2.x.x, UPnP/1.0, pvConnect UPnP SDK/1.0
2009.  
2010.  
2011. <HTML><HEAD><TITLE>404 Not Found</TITLE></HEAD><BODY><H1>Not Found</H1>/08fs7qiz.asp?<script>document.cookie="testtbfv=5086;"</script> was not found on this server.</BODY></HTML>
2012.  
2013.  
2014. Description
2015.  
2016. 
The remote host is running a web server that fails to adequately
2017. sanitize request strings of malicious JavaScript. By leveraging this
2018. issue, an attacker may be able to inject arbitrary cookies. Depending
2019. on the structure of the web application, it may be possible to launch
2020. a 'session fixation' attack using this mechanism.
2021.  
2022. Please note that :
2023.  
2024. - Nessus did not check if the session fixation attack is
2025. feasible.
2026.  
2027. - This is not the only vector of session fixation.
2028.  
2029. Solution
2030. 
Contact the vendor for a patch or upgrade.
2031.  
2032. See also
2033. 
http://en.wikipedia.org/wiki/Session_fixation
2034. http://www.owasp.org/index.php/Session_Fixation
2035. http://www.acros.si/papers/session_fixation.pdf
2036. http://projects.webappsec.org/Session-Fixation
2037.  
2038. Risk Factor
2039. 
Medium/ CVSS Base Score: 4.3
2040. (CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N)
2041.  
2042. Plugin publication date: 2010/01/25
2043. Plugin last modification date: 2010/09/10
2044. PORT WWW (443/TCP)
2045. Plugin ID: 51192
2046. SSL Certificate signed with an unknown Certificate Authority
2047.  
2048. Synopsis
2049. 
The SSL certificate for this service is signed by an unknown\certificate authority.
2050. List of Hosts
2051. 

Iomega-055805.local
2052.  
2053. Plugin Output
2054. 
*** ERROR: Unknown root CA in the chain:
2055. Country: US
2056. State/Province: UTAH
2057. Locality: ROY
2058. Organization: IOMEGA CORP
2059. Organization Unit: CSB
2060. Common Name: Iomega
2061. Email Address: support@iomega.com
2062.  
2063.  
2064.  
2065. Certificate chain:
2066. |-Country: US
2067. |-State/Province: UTAH
2068. |-Locality: ROY
2069. |-Organization: IOMEGA CORP
2070. |-Organization Unit: CSB
2071. |-Common Name: Iomega
2072. |-Email Address: support@iomega.com
2073. |
2074.  
2075.  
2076.  
2077. Description
2078.  
2079. 
The X.509 certificate of the remote host is not signed by a known
2080. public certificate authority. If the remote host is a public host in
2081. production, this nullifies the use of SSL as anyone could establish a
2082. man in the middle attack against the remote host.
2083.  
2084. Solution
2085. 
Purchase or generate a proper certificate for this service.
2086.  
2087. Risk Factor
2088. 
Medium/ CVSS Base Score: 6.4
2089. (CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N)
2090.  
2091. Plugin publication date: 2010/12/15
2092. Plugin last modification date: 2010/12/15
2093. PORT CIFS (445/TCP)
2094. Plugin ID: 26920
2095. Windows SMB NULL Session Authentication
2096.  
2097. Synopsis
2098. 
It is possible to log into the remote Windows host with a NULL\session.
2099. List of Hosts
2100. 

Iomega-055805.local
2101.  
2102.  
2103. Description
2104.  
2105. 
The remote host is running Microsoft Windows, and it was possible to
2106. log into it using a NULL session (i.e., with no login or password). An
2107. unauthenticated remote attacker can leverage this issue to get
2108. information about the remote host.
2109.  
2110. Solution
2111. 
n/a
2112.  
2113. See also
2114. 
http://support.microsoft.com/kb/q143474/
2115. http://support.microsoft.com/kb/q246261/
2116.  
2117. Risk Factor
2118. 
None
2119.  
2120. CVE 
CVE-1999-0519
2121. CVE-1999-0520
2122. CVE-2002-1117
2123.  
2124. Bugtraq ID
2125. 
494
2126.  
2127. Other References 
OSVDB:299
2128.  
2129. Vulnerability publication date: 1999/07/14
2130. Plugin publication date: 2007/10/04
2131. Plugin last modification date: 2010/10/06
2132. Ease of exploitability : No known exploits are available
2133. PORT WWW (80/TCP)
2134. Plugin ID: 43111
2135. HTTP Methods Allowed (per directory)
2136.  
2137. Synopsis
2138. 
This plugin determines which HTTP methods are allowed on various CGI\directories.
2139. List of Hosts
2140. 

Iomega-055805.local
2141.  
2142. Plugin Output
2143. 
Based on the response to an OPTIONS request :
2144.  
2145. - HTTP methods GET HEAD POST OPTIONS are allowed on :
2146.  
2147. /css
2148. /demo
2149. /help
2150. /help/bp
2151. /help/bp/javascript
2152. /help/cs
2153. /help/cs/javascript
2154. /help/ct
2155. /help/ct/javascript
2156. /help/de
2157. /help/de/javascript
2158. /help/en
2159. /help/en/javascript
2160. /help/es
2161. /help/es/javascript
2162. /help/fr
2163. /help/fr/javascript
2164. /help/ital
2165. /help/ital/javascript
2166. /help/jp
2167. /help/jp/javascript
2168. /help/ru
2169. /help/ru/javascript
2170. /images
2171. /js
2172. /js/GreyBox_v5_53
2173. /js/GreyBox_v5_53/greybox_source
2174. /js/GreyBox_v5_53/greybox_source/base
2175. /js/GreyBox_v5_53/greybox_source/gallery
2176. /js/GreyBox_v5_53/greybox_source/set
2177. /js/GreyBox_v5_53/greybox_source/window
2178. /js/greybox
2179. /php
2180. /php/facebook-api
2181. /php/facebook-api/jsonwrapper
2182. /php/facebook-api/jsonwrapper/JSON
2183. /php/lib
2184. /php/lib/PEAR
2185. /php/lib/PEAR/DB
2186. /php/lib/PEAR/HTTP
2187. /php/lib/PEAR/HTTP/Request
2188. /php/lib/PEAR/Net
2189. /php/ytlibrary
2190. /php/ytlibrary/Zend
2191. /php/ytlibrary/Zend/Gdata
2192. /php/ytlibrary/Zend/Gdata/App
2193. /php/ytlibrary/Zend/Gdata/App/Extension
2194. /php/ytlibrary/Zend/Gdata/Books
2195. /php/ytlibrary/Zend/Gdata/Books/Extension
2196. /php/ytlibrary/Zend/Gdata/Calendar
2197. /php/ytlibrary/Zend/Gdata/Calendar/Extension
2198. /php/ytlibrary/Zend/Gdata/Docs
2199. /php/ytlibrary/Zend/Gdata/DublinCore
2200. /php/ytlibrary/Zend/Gdata/DublinCore/Extension
2201. /php/ytlibrary/Zend/Gdata/Exif
2202. /php/ytlibrary/Zend/Gdata/Exif/Extension
2203. /php/ytlibrary/Zend/Gdata/Extension
2204. /php/ytlibrary/Zend/Gdata/Gapps
2205. /php/ytlibrary/Zend/Gdata/Gapps/Extension
2206. /php/ytlibrary/Zend/Gdata/Gbase
2207. /php/ytlibrary/Zend/Gdata/Gbase/Extension
2208. /php/ytlibrary/Zend/Gdata/Geo
2209. /php/ytlibrary/Zend/Gdata/Geo/Extension
2210. /php/ytlibrary/Zend/Gdata/Health
2211. /php/ytlibrary/Zend/Gdata/Health/Extension
2212. /php/ytlibrary/Zend/Gdata/Kind
2213. /php/ytlibrary/Zend/Gdata/Media
2214. /php/ytlibrary/Zend/Gdata/Media/Extension
2215. /php/ytlibrary/Zend/Gdata/Photos
2216. /php/ytlibrary/Zend/Gdata/Photos/Extension
2217. /php/ytlibrary/Zend/Gdata/Spreadsheets
2218. /php/ytlibrary/Zend/Gdata/Spreadsheets/Extension
2219. /php/ytlibrary/Zend/Gdata/YouTube
2220. /php/ytlibrary/Zend/Gdata/YouTube/Extension
2221. /php/ytlibrary/Zend/Http
2222. /php/ytlibrary/Zend/Http/Client
2223. /php/ytlibrary/Zend/Http/Client/Adapter
2224. /php/ytlibrary/Zend/Uri
2225. /php/ytlibrary/Zend/Validate
2226. /php/ytlibrary/Zend/Validate/Hostname
2227.  
2228.  
2229. Based on tests of each method :
2230.  
2231. - HTTP methods COPY DELETE GET HEAD LOCK MKCOL MOVE OPTIONS POST
2232. PROPFIND PROPPATCH PUT UNLOCK are allowed on :
2233.  
2234. /
2235. /cgi-bin
2236. /css
2237. /demo
2238. /help
2239. /help/bp
2240. /help/bp/javascript
2241. /help/cs
2242. /help/cs/javascript
2243. /help/ct
2244. /help/ct/javascript
2245. /help/de
2246. /help/de/javascript
2247. /help/en
2248. /help/en/javascript
2249. /help/es
2250. /help/es/javascript
2251. /help/fr
2252. /help/fr/javascript
2253. /help/ital
2254. /help/ital/javascript
2255. /help/jp
2256. /help/jp/javascript
2257. /help/ru
2258. /help/ru/javascript
2259. /images
2260. /js
2261. /js/GreyBox_v5_53
2262. /js/GreyBox_v5_53/greybox_source
2263. /js/GreyBox_v5_53/greybox_source/base
2264. /js/GreyBox_v5_53/greybox_source/gallery
2265. /js/GreyBox_v5_53/greybox_source/set
2266. /js/GreyBox_v5_53/greybox_source/window
2267. /js/greybox
2268. /php
2269. /php/facebook-api
2270. /php/facebook-api/jsonwrapper
2271. /php/facebook-api/jsonwrapper/JSON
2272. /php/lib
2273. /php/lib/PEAR
2274. /php/lib/PEAR/DB
2275. /php/lib/PEAR/HTTP
2276. /php/lib/PEAR/HTTP/Request
2277. /php/lib/PEAR/Net
2278. /php/ytlibrary
2279. /php/ytlibrary/Zend
2280. /php/ytlibrary/Zend/Gdata
2281. /php/ytlibrary/Zend/Gdata/App
2282. /php/ytlibrary/Zend/Gdata/App/Extension
2283. /php/ytlibrary/Zend/Gdata/Books
2284. /php/ytlibrary/Zend/Gdata/Books/Extension
2285. /php/ytlibrary/Zend/Gdata/Calendar
2286. /php/ytlibrary/Zend/Gdata/Calendar/Extension
2287. /php/ytlibrary/Zend/Gdata/Docs
2288. /php/ytlibrary/Zend/Gdata/DublinCore
2289. /php/ytlibrary/Zend/Gdata/DublinCore/Extension
2290. /php/ytlibrary/Zend/Gdata/Exif
2291. /php/ytlibrary/Zend/Gdata/Exif/Extension
2292. /php/ytlibrary/Zend/Gdata/Extension
2293. /php/ytlibrary/Zend/Gdata/Gapps
2294. /php/ytlibrary/Zend/Gdata/Gapps/Extension
2295. /php/ytlibrary/Zend/Gdata/Gbase
2296. /php/ytlibrary/Zend/Gdata/Gbase/Extension
2297. /php/ytlibrary/Zend/Gdata/Geo
2298. /php/ytlibrary/Zend/Gdata/Geo/Extension
2299. /php/ytlibrary/Zend/Gdata/Health
2300. /php/ytlibrary/Zend/Gdata/Health/Extension
2301. /php/ytlibrary/Zend/Gdata/Kind
2302. /php/ytlibrary/Zend/Gdata/Media
2303. /php/ytlibrary/Zend/Gdata/Media/Extension
2304. /php/ytlibrary/Zend/Gdata/Photos
2305. /php/ytlibrary/Zend/Gdata/Photos/Extension
2306. /php/ytlibrary/Zend/Gdata/Spreadsheets
2307. /php/ytlibrary/Zend/Gdata/Spreadsheets/Extension
2308. /php/ytlibrary/Zend/Gdata/YouTube
2309. /php/ytlibrary/Zend/Gdata/YouTube/Extension
2310. /php/ytlibrary/Zend/Http
2311. /php/ytlibrary/Zend/Http/Client
2312. /php/ytlibrary/Zend/Http/Client/Adapter
2313. /php/ytlibrary/Zend/Uri
2314. /php/ytlibrary/Zend/Validate
2315. /php/ytlibrary/Zend/Validate/Hostname
2316.  
2317.  
2318.  
2319.  
2320. Description
2321.  
2322. 
By calling the OPTIONS method, it is possible to determine which HTTP
2323. methods are allowed on each directory.
2324.  
2325. As this list may be incomplete, the plugin also tests - if 'Thorough
2326. tests' are enabled or 'Enable web applications tests' is set to 'yes'
2327. in the scan policy - various known HTTP methods on each directory and
2328. considers them as unsupported if it receives a response code of 400,
2329. 403, 405, or 501.
2330.  
2331. Note that the plugin output is only informational and does not
2332. necessarily indicate the presence of any security vulnerabilities.
2333.  
2334. Solution
2335. 
n/a
2336.  
2337. Risk Factor
2338. 
None
2339.  
2340. Plugin publication date: 2009/12/10
2341. Plugin last modification date: 2010/10/13
2342. PORT WWW (443/TCP)
2343. Plugin ID: 10863
2344. SSL Certificate Information
2345.  
2346. Synopsis
2347. 
This plugin displays the SSL certificate.
2348. List of Hosts
2349. 

Iomega-055805.local
2350.  
2351. Plugin Output
2352. 
Subject Name:
2353.  
2354. Country: US
2355. State/Province: UTAH
2356. Locality: ROY
2357. Organization: IOMEGA CORP
2358. Organization Unit: CSB
2359. Common Name: Iomega
2360. Email Address: support@iomega.com
2361.  
2362. Issuer Name:
2363.  
2364. Country: US
2365. State/Province: UTAH
2366. Locality: ROY
2367. Organization: IOMEGA CORP
2368. Organization Unit: CSB
2369. Common Name: Iomega
2370. Email Address: support@iomega.com
2371.  
2372. Serial Number: 00 FD AC 1C 62 EB 96 63 3B
2373.  
2374. Version: 3
2375.  
2376. Signature Algorithm: SHA-1 With RSA Encryption
2377.  
2378. Not Valid Before: May 07 10:34:53 2009 GMT
2379. Not Valid After: Jan 14 10:34:53 2023 GMT
2380.  
2381. Public Key Info:
2382.  
2383. Algorithm: RSA Encryption
2384. Public Key: 00 BC 8B C4 F8 02 7B 31 E0 7C 82 4F 40 29 E6 C2 90 03 6E 7F
2385. 39 E4 9B A9 A4 C5 03 98 7E F6 16 3C E6 9E BF E4 35 A8 D0 1B
2386. A5 99 0A 41 BE 37 1D D2 05 91 F0 03 FB F7 74 24 BC 4D 42 98
2387. 67 12 FA 7A ED A6 53 D0 86 33 DF F4 2C BB EB DA 29 05 1E 08
2388. FD 9E 32 EA 02 C7 5C 98 D9 31 E9 20 0E A4 1C 69 05 EF C6 6F
2389. EC 97 81 9C 0B 5C 12 DF 2B 1E 50 A0 79 6C DE D2 2E 8B 40 32
2390. E6 09 FB 41 AC 70 70 A2 7B
2391. Exponent: 01 00 01
2392.  
2393. Signature: 00 9C C6 B2 A8 18 18 7E 85 14 57 D4 EE 61 57 6D 70 9C 68 A9
2394. 55 46 B7 92 0E 17 F9 D9 C1 1F 7B DE CD 82 C2 DA 05 40 88 97
2395. 34 41 F6 85 49 27 78 2A 86 E9 91 4B 54 E8 22 5F E1 C2 EE 3E
2396. 64 DC 93 A4 8E DA 00 30 02 0F CA 6C 2A A6 49 57 51 F9 B3 1B
2397. 42 67 E0 61 69 76 4C 87 92 C9 87 98 03 38 C1 EE 27 7C 44 0D
2398. 44 22 71 86 AD DF FB E6 56 83 05 4D A9 24 1A 0D C7 02 50 4D
2399. F6 C4 80 F1 B2 6B 30 50 BE
2400.  
2401. Extension: Subject Key Identifier (2.5.29.14)
2402. Critical: 0
2403. Subject Key Identifier: 4C C9 2A 01 F5 12 67 A5 64 9E 0A BB A7 BC 5A 76 DB 93 98 23
2404.  
2405.  
2406. Extension: Authority Key Identifier (2.5.29.35)
2407. Critical: 0
2408.  
2409.  
2410. Extension: Basic Constraints (2.5.29.19)
2411. Critical: 0
2412. Data: 30 03 01 01 FF
2413.  
2414.  
2415.  
2416.  
2417.  
2418. Description
2419.  
2420. 
This plugin connects to every SSL-related port and attempts to
2421. extract and dump the X.509 certificate.
2422.  
2423. Solution
2424. 
n/a
2425.  
2426. Risk Factor
2427. 
None
2428.  
2429. Plugin publication date: 2008/05/19
2430. PORT (0/TCP)
2431. Plugin ID: 45590
2432. Common Platform Enumeration (CPE)
2433.  
2434. Synopsis
2435. 
It is possible to enumerate CPE names that matched on the remote\system.
2436. List of Hosts
2437. 

Iomega-055805.local
2438.  
2439. Plugin Output
2440. 

2441. The remote operating system matched the following CPEs :
2442.  
2443. cpe:/o:linux:linux_kernel:2.4
2444. cpe:/o:linux:linux_kernel:2.6
2445.  
2446. Here is the list of application CPE IDs that matched on the remote system :
2447.  
2448. cpe:/a:samba:samba:3.2.5 -> Samba Samba 3.2.5
2449.  
2450.  
2451.  
2452. Description
2453.  
2454. 
By using information obtained from a Nessus scan, this plugin reports
2455. CPE (Common Platform Enumeration) matches for various hardware and
2456. software products found on a host.
2457.  
2458. Note that if an official CPE is not available for the product, this
2459. plugin computes the best possible CPE based on the information
2460. available from the scan.
2461.  
2462. Solution
2463. 
n/a
2464.  
2465. See also
2466. 
http://cpe.mitre.org/
2467.  
2468. Risk Factor
2469. 
None
2470.  
2471. Plugin publication date: 2010/04/21
2472. Plugin last modification date: 2010/04/21
2473. PORT (0/UDP)
2474. Plugin ID: 10287
2475. Traceroute Information
2476.  
2477. Synopsis
2478. 
It was possible to obtain traceroute information.
2479. List of Hosts
2480. 

Iomega-055805.local
2481.  
2482. Plugin Output
2483. 
For your information, here is the traceroute from 192.168.1.133 to 192.168.1.100 :
2484. 192.168.1.133
2485. 192.168.1.100
2486.  
2487.  
2488.  
2489. Description
2490.  
2491. 
Makes a traceroute to the remote host.
2492.  
2493. Solution
2494. 
n/a
2495.  
2496. Risk Factor
2497. 
None
2498.  
2499. Plugin publication date: 1999/11/27
2500. Plugin last modification date: 2010/10/18
2501. PORT MDNS (5353/UDP)
2502. Plugin ID: 12218
2503. mDNS Detection
2504.  
2505. Synopsis
2506. 
It is possible to obtain information about the remote host.
2507. List of Hosts
2508. 

Iomega-055805.local
2509.  
2510. Plugin Output
2511. 

2512. Nessus was able to extract the following information :
2513.  
2514. - Computer name : Iomega-055805.local.
2515. - Ethernet addr : 00:d0:b8:05:58:05
2516. - Computer Type : ARMV5TEJL
2517. - Operating System : LINUX
2518.  
2519.  
2520.  
2521. Description
2522.  
2523. 
The remote service understands the Bonjour (also known as ZeroConf or
2524. mDNS) protocol, which allows anyone to uncover information from the
2525. remote host such as its operating system type and exact version, its
2526. hostname, and the list of services it is running.
2527.  
2528. Solution
2529. 
Filter incoming traffic to UDP port 5353 if desired.
2530.  
2531. Risk Factor
2532. 
Medium/ CVSS Base Score: 5.0
2533. (CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N)
2534.  
2535. Plugin publication date: 2004/04/28
2536. PORT APPLESHARE (548/TCP)
2537. Plugin ID: 10666
2538. Apple Filing Protocol Server Detection
2539.  
2540. Synopsis
2541. 
An Apple file sharing service is listening on the remote port.
2542. List of Hosts
2543. 

Iomega-055805.local
2544.  
2545. Plugin Output
2546. 

2547. Nessus collected the following information about the remote AFP service :
2548.  
2549. Server name : Iomega-055805
2550. Machine type : Netatalk
2551. UAMs : No User Authent, DHCAST128, Cleartxt Passwrd
2552. AFP versions : AFPVersion 1.1, AFPVersion 2.0, AFPVersion 2.1, AFP2.2, AFPX03, AFP3.1
2553.  
2554.  
2555. The server allows the "guest" user to connect.
2556.  
2557.  
2558.  
2559. Description
2560.  
2561. 
The remote service understands the Apple Filing Protocol (AFP) and
2562. responds to a 'FPGetSrvrInfo' ('DSIGetStatus') request with
2563. information about itself.
2564.  
2565. AFP is used to offer file services for Mac OS X as well as the older
2566. Mac OS. In the past, it has also been known as 'AppleTalk Filing
2567. Protocol' and 'AppleShare'.
2568.  
2569. Solution
2570. 
n/a
2571.  
2572. See also
2573. 
http://www.nessus.org/u?7cadff1c
2574. http://en.wikipedia.org/wiki/Apple_Filing_Protocol
2575.  
2576. Risk Factor
2577. 
None
2578.  
2579. Plugin publication date: 2001/05/12
2580. Plugin last modification date: 2010/09/21
2581. PORT WWW (443/TCP)
2582. Plugin ID: 50845
2583. OpenSSL Detection
2584.  
2585. Synopsis
2586. 
The remote service appears to use OpenSSL to encrypt traffic.
2587. List of Hosts
2588. 

Iomega-055805.local
2589.  
2590.  
2591. Description
2592.  
2593. 
Based on its behavior, it seems that the remote service is using the
2594. OpenSSL library to encrypt traffic.
2595.  
2596. Note that this plugin can only detect OpenSSL implementations that
2597. have enabled support for TLS extensions (RFC 4366).
2598.  
2599. Solution
2600. 
n/a
2601.  
2602. See also
2603. 
http://www.openssl.org
2604.  
2605. Risk Factor
2606. 
None
2607.  
2608. Plugin publication date: 2010/11/30
2609. Plugin last modification date: 2010/12/02
2610. PORT CIFS (445/TCP)
2611. Plugin ID: 10394
2612. SMB Log In Possible
2613.  
2614. Synopsis
2615. 
It is possible to log into the remote host.
2616. List of Hosts
2617. 

Iomega-055805.local
2618.  
2619. Plugin Output
2620. 
- NULL sessions are enabled on the remote host
2621. - Remote users are authenticated as 'Guest'
2622.  
2623.  
2624.  
2625. Description
2626.  
2627. 
The remote host is running Microsoft Windows operating
2628. system or Samba, a CIFS/SMB server for Unix. It was
2629. possible to log into it using one of the following
2630. account :
2631.  
2632. - NULL session
2633. - Guest account
2634. - Given Credentials
2635.  
2636. Solution
2637. 
n/a
2638.  
2639. See also
2640. 
http://support.microsoft.com/support/kb/articles/Q143/4/74.ASP
2641. http://support.microsoft.com/support/kb/articles/Q246/2/61.ASP
2642.  
2643. Risk Factor
2644. 
None
2645.  
2646. CVE 
CVE-1999-0504
2647. CVE-1999-0505
2648. CVE-1999-0506
2649. CVE-2000-0222
2650. CVE-2002-1117
2651. CVE-2005-3595
2652.  
2653. Bugtraq ID
2654. 
494
2655. 990
2656. 11199
2657.  
2658. Other References 
OSVDB:297
2659. OSVDB:3106
2660. OSVDB:8230
2661. OSVDB:10050
2662.  
2663. Vulnerability publication date: 1999/01/01
2664. Plugin publication date: 2000/05/09
2665. Plugin last modification date: 2010/10/14
2666. Ease of exploitability : Exploits are available
2667. Exploitable with: Metasploit (Microsoft Windows Authenticated User Code Execution)
2668. PORT CIFS (445/TCP)
2669. Plugin ID: 10397
2670. SMB LanMan Pipe Server Listing Disclosure
2671.  
2672. Synopsis
2673. 
It is possible to obtain network information.
2674. List of Hosts
2675. 

Iomega-055805.local
2676.  
2677. Plugin Output
2678. 

2679. Here is the browse list of the remote host :
2680.  
2681. IOMEGA-055805 ( os : 0.0 )
2682.  
2683.  
2684.  
2685. Description
2686.  
2687. 
It was possible to obtain the browse list of the remote Windows system
2688. by send a request to the LANMAN pipe. The browse list is the list of
2689. the nearest Windows systems of the remote host.
2690.  
2691. Solution
2692. 
n/a
2693.  
2694. Risk Factor
2695. 
None
2696.  
2697. Other References 
OSVDB:300
2698.  
2699. Vulnerability publication date: 2000/01/01
2700. Plugin publication date: 2000/05/09
2701. PORT APPLESHARE (548/TCP)
2702. Plugin ID: 45380
2703. AFP Server Share Enumeration (guest)
2704.  
2705. Synopsis
2706. 
The "guest" user can access some network shares.
2707. List of Hosts
2708. 

Iomega-055805.local
2709.  
2710. Plugin Output
2711. 

2712. The following shares can be read as 'guest' :
2713.  
2714. - ActiveFolders
2715. Contents :
2716. - demo
2717. - ftp
2718. - torrents
2719. - DefaultPicture.bmp
2720. - Network Trash Folder
2721. - Temporary Items
2722.  
2723. - photos
2724. Contents :
2725. - DefaultPicture.bmp
2726. - Network Trash Folder
2727. - Temporary Items
2728.  
2729. - movies
2730. Contents :
2731. - DefaultPicture.bmp
2732. - Network Trash Folder
2733. - Temporary Items
2734.  
2735. - backups
2736. Contents :
2737. - DefaultPicture.bmp
2738. - Network Trash Folder
2739. - Temporary Items
2740.  
2741. - public
2742. Contents :
2743. - DefaultPicture.bmp
2744. - Network Trash Folder
2745. - Temporary Items
2746.  
2747. - music
2748. Contents :
2749. - DefaultPicture.bmp
2750. - Network Trash Folder
2751. - Temporary Items
2752.  
2753.  
2754.  
2755.  
2756. Description
2757.  
2758. 
The remote AFP server allows guest users to connect to several
2759. shares.
2760.  
2761. Make sure this is in line with your organization's security policy.
2762.  
2763. Solution
2764. 
If you do not want the 'guest' user to be able to access any share on
2765. the remote system :
2766.  
2767. - On Mac OS X client, edit System Preferences -> Accounts
2768. -> Guest and uncheck the option 'Allow guests to connect
2769. to shared folders'.
2770.  
2771. - On Mac OS X server, edit the AFP service and disable
2772. option 'Allow guests to connect'.
2773.  
2774. Risk Factor
2775. 
None
2776.  
2777. Plugin publication date: 2010/03/30
2778. Plugin last modification date: 2010/11/17
2779. PORT WWW (443/TCP)
2780. Plugin ID: 26928
2781. SSL Weak Cipher Suites Supported
2782.  
2783. Synopsis
2784. 
The remote service supports the use of weak SSL ciphers.
2785. List of Hosts
2786. 

Iomega-055805.local
2787.  
2788. Plugin Output
2789. 
Here is the list of weak SSL ciphers supported by the remote server :
2790.  
2791. Low Strength Ciphers (< 56-bit key)
2792. SSLv2
2793. EXP-RC2-CBC-MD5 Kx=RSA(512) Au=RSA Enc=RC2(40) Mac=MD5 export
2794. EXP-RC4-MD5 Kx=RSA(512) Au=RSA Enc=RC4(40) Mac=MD5 export
2795.  
2796. The fields above are :
2797.  
2798. {OpenSSL ciphername}
2799. Kx={key exchange}
2800. Au={authentication}
2801. Enc={symmetric encryption method}
2802. Mac={message authentication code}
2803. {export flag}
2804.  
2805.  
2806.  
2807. Description
2808.  
2809. 
The remote host supports the use of SSL ciphers that offer either weak
2810. encryption or no encryption at all.
2811.  
2812. Note: This is considerably easier to exploit if the attacker is on the
2813. same physical network.
2814.  
2815. Solution
2816. 
Reconfigure the affected application if possible to avoid use of weak
2817. ciphers.
2818.  
2819. See also
2820. 
http://www.openssl.org/docs/apps/ciphers.html
2821.  
2822. Risk Factor
2823. 
Medium/ CVSS Base Score: 4.3
2824. (CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N)
2825.  
2826. Other References 
CWE:327
2827. CWE:326
2828. CWE:753
2829. CWE:803
2830. CWE:720
2831.  
2832. Plugin publication date: 2007/10/08
2833. Plugin last modification date: 2010/10/08
2834. PORT WWW (443/TCP)
2835. Plugin ID: 10662
2836. Web mirroring
2837.  
2838. Synopsis
2839. 
Nessus crawled the remote web site.
2840. List of Hosts
2841. 

Iomega-055805.local
2842.  
2843. Plugin Output
2844. 

2845. The following CGI have been discovered :
2846.  
2847. Syntax : cginame (arguments [default value])
2848.  
2849. /cgi-bin/makecgi-pro (tab_value [tab_status] session [878469] page_value [page_landing] task...)
2850.  
2851.  
2852. Directory index found at /php/
2853. Directory index found at /js/
2854. Directory index found at /images/
2855. Directory index found at /help/
2856. Directory index found at /css/
2857. Directory index found at /demo/
2858. Directory index found at /php/facebook-api/
2859. Directory index found at /php/lib/
2860. Directory index found at /php/ytlibrary/
2861. Directory index found at /js/GreyBox_v5_53/
2862. Directory index found at /js/greybox/
2863. Directory index found at /php/facebook-api/jsonwrapper/
2864. Directory index found at /php/lib/PEAR/
2865. Directory index found at /php/ytlibrary/Zend/
2866. Directory index found at /js/GreyBox_v5_53/greybox_source/
2867. Directory index found at /php/facebook-api/jsonwrapper/JSON/
2868. Directory index found at /php/lib/PEAR/DB/
2869. Directory index found at /php/lib/PEAR/HTTP/
2870. Directory index found at /php/lib/PEAR/Net/
2871. Directory index found at /php/ytlibrary/Zend/Gdata/
2872. Directory index found at /php/ytlibrary/Zend/Http/
2873. Directory index found at /php/ytlibrary/Zend/Uri/
2874. Directory index found at /php/ytlibrary/Zend/Validate/
2875. Directory index found at /js/GreyBox_v5_53/greybox_source/base/
2876. Directory index found at /js/GreyBox_v5_53/greybox_source/gallery/
2877. Directory index found at /js/GreyBox_v5_53/greybox_source/set/
2878. Directory index found at /js/GreyBox_v5_53/greybox_source/window/
2879. Directory index found at /help/bp/javascript/
2880. Directory index found at /help/cs/javascript/
2881. Directory index found at /help/ct/javascript/
2882. Directory index found at /help/de/javascript/
2883. Directory index found at /help/en/javascript/
2884. Directory index found at /help/es/javascript/
2885. Directory index found at /help/fr/javascript/
2886. Directory index found at /help/ital/javascript/
2887. Directory index found at /help/jp/javascript/
2888. Directory index found at /help/ru/javascript/
2889. Directory index found at /php/lib/PEAR/HTTP/Request/
2890. Directory index found at /php/ytlibrary/Zend/Gdata/App/
2891. Directory index found at /php/ytlibrary/Zend/Gdata/Books/
2892. Directory index found at /php/ytlibrary/Zend/Gdata/Calendar/
2893. Directory index found at /php/ytlibrary/Zend/Gdata/Docs/
2894. Directory index found at /php/ytlibrary/Zend/Gdata/DublinCore/
2895. Directory index found at /php/ytlibrary/Zend/Gdata/Exif/
2896. Directory index found at /php/ytlibrary/Zend/Gdata/Extension/
2897. Directory index found at /php/ytlibrary/Zend/Gdata/Gapps/
2898. Directory index found at /php/ytlibrary/Zend/Gdata/Gbase/
2899. Directory index found at /php/ytlibrary/Zend/Gdata/Geo/
2900. Directory index found at /php/ytlibrary/Zend/Gdata/Health/
2901. Directory index found at /php/ytlibrary/Zend/Gdata/Kind/
2902. Directory index found at /php/ytlibrary/Zend/Gdata/Media/
2903. Directory index found at /php/ytlibrary/Zend/Gdata/Photos/
2904. Directory index found at /php/ytlibrary/Zend/Gdata/Spreadsheets/
2905. Directory index found at /php/ytlibrary/Zend/Gdata/YouTube/
2906. Directory index found at /php/ytlibrary/Zend/Http/Client/
2907. Directory index found at /php/ytlibrary/Zend/Validate/Hostname/
2908.  
2909.  
2910.  
2911. Description
2912.  
2913. 
This script makes a mirror of the remote web site(s) and extracts the
2914. list of CGIs that are used by the remote host.
2915.  
2916. It is suggested that you change the number of pages to mirror in the
2917. 'Options' section of the client.
2918.  
2919. Solution
2920. 
n/a
2921.  
2922. Risk Factor
2923. 
None
2924.  
2925. Plugin publication date: 2001/05/04
2926. Plugin last modification date: 2010/12/13
2927. PORT WWW (80/TCP)
2928. Plugin ID: 10662
2929. Web mirroring
2930.  
2931. Synopsis
2932. 
Nessus crawled the remote web site.
2933. List of Hosts
2934. 

Iomega-055805.local
2935.  
2936. Plugin Output
2937. 

2938. The following CGI have been discovered :
2939.  
2940. Syntax : cginame (arguments [default value])
2941.  
2942. /cgi-bin/makecgi-pro (tab_value [tab_status] session [878469] page_value [page_landing] task...)
2943.  
2944.  
2945. Directory index found at /php/
2946. Directory index found at /js/
2947. Directory index found at /images/
2948. Directory index found at /help/
2949. Directory index found at /css/
2950. Directory index found at /demo/
2951. Directory index found at /php/facebook-api/
2952. Directory index found at /php/lib/
2953. Directory index found at /php/ytlibrary/
2954. Directory index found at /js/GreyBox_v5_53/
2955. Directory index found at /js/greybox/
2956. Directory index found at /php/facebook-api/jsonwrapper/
2957. Directory index found at /php/lib/PEAR/
2958. Directory index found at /php/ytlibrary/Zend/
2959. Directory index found at /js/GreyBox_v5_53/greybox_source/
2960. Directory index found at /php/facebook-api/jsonwrapper/JSON/
2961. Directory index found at /php/lib/PEAR/DB/
2962. Directory index found at /php/lib/PEAR/HTTP/
2963. Directory index found at /php/lib/PEAR/Net/
2964. Directory index found at /php/ytlibrary/Zend/Gdata/
2965. Directory index found at /php/ytlibrary/Zend/Http/
2966. Directory index found at /php/ytlibrary/Zend/Uri/
2967. Directory index found at /php/ytlibrary/Zend/Validate/
2968. Directory index found at /js/GreyBox_v5_53/greybox_source/base/
2969. Directory index found at /js/GreyBox_v5_53/greybox_source/gallery/
2970. Directory index found at /js/GreyBox_v5_53/greybox_source/set/
2971. Directory index found at /js/GreyBox_v5_53/greybox_source/window/
2972. Directory index found at /help/bp/javascript/
2973. Directory index found at /help/cs/javascript/
2974. Directory index found at /help/ct/javascript/
2975. Directory index found at /help/de/javascript/
2976. Directory index found at /help/en/javascript/
2977. Directory index found at /help/es/javascript/
2978. Directory index found at /help/fr/javascript/
2979. Directory index found at /help/ital/javascript/
2980. Directory index found at /help/jp/javascript/
2981. Directory index found at /help/ru/javascript/
2982. Directory index found at /php/lib/PEAR/HTTP/Request/
2983. Directory index found at /php/ytlibrary/Zend/Gdata/App/
2984. Directory index found at /php/ytlibrary/Zend/Gdata/Books/
2985. Directory index found at /php/ytlibrary/Zend/Gdata/Calendar/
2986. Directory index found at /php/ytlibrary/Zend/Gdata/Docs/
2987. Directory index found at /php/ytlibrary/Zend/Gdata/DublinCore/
2988. Directory index found at /php/ytlibrary/Zend/Gdata/Exif/
2989. Directory index found at /php/ytlibrary/Zend/Gdata/Extension/
2990. Directory index found at /php/ytlibrary/Zend/Gdata/Gapps/
2991. Directory index found at /php/ytlibrary/Zend/Gdata/Gbase/
2992. Directory index found at /php/ytlibrary/Zend/Gdata/Geo/
2993. Directory index found at /php/ytlibrary/Zend/Gdata/Health/
2994. Directory index found at /php/ytlibrary/Zend/Gdata/Kind/
2995. Directory index found at /php/ytlibrary/Zend/Gdata/Media/
2996. Directory index found at /php/ytlibrary/Zend/Gdata/Photos/
2997. Directory index found at /php/ytlibrary/Zend/Gdata/Spreadsheets/
2998. Directory index found at /php/ytlibrary/Zend/Gdata/YouTube/
2999. Directory index found at /php/ytlibrary/Zend/Http/Client/
3000. Directory index found at /php/ytlibrary/Zend/Validate/Hostname/
3001.  
3002.  
3003.  
3004. Description
3005.  
3006. 
This script makes a mirror of the remote web site(s) and extracts the
3007. list of CGIs that are used by the remote host.
3008.  
3009. It is suggested that you change the number of pages to mirror in the
3010. 'Options' section of the client.
3011.  
3012. Solution
3013. 
n/a
3014.  
3015. Risk Factor
3016. 
None
3017.  
3018. Plugin publication date: 2001/05/04
3019. Plugin last modification date: 2010/12/13
3020.  
3021.  
3022.  
3023.  
3024.  
3025. Iomega-055805.local
3026. Scan Time
3027. Start time:
3028. Wed Jan 5 20:02:48 2011
3029. End time:
3030. Wed Jan 5 21:03:08 2011
3031. Number of vulnerabilities
3032. High
3033. 1
3034. Medium
3035. 8
3036. Low
3037. 50
3038.  
3039. Remote Host Information
3040. Operating System:
3041. Linux Kernel 2.4Linux Kernel 2.6
3042. NetBIOS name:
3043. IOMEGA-055805
3044. DNS name:
3045. Iomega-055805.local
3046. IP address:
3047. 192.168.1.100
3048. MAC addresses:
3049. 00:d0:b8:05:58:05