Attack Tool Kit 4.1 - Exported list of loaded plugins 2007/07/26
Software:
Attack Tool Kit 4.1
Loaded Plugins: 347
Date of export: 26.07.2007
Name
Version
Port
Family
Class
Severity
ID
4D WebStar up to 5.3.3 symbolic link vulnerability
2.0
tcp/80
HTTP
Symlink
Low
100
Alcatel ADSL Modem without password
1.0
tcp/23
Network Devices
Configuration
High
300
Alt-N MDaemon prior 7.2.1 local privilege escalation vulnerability
1.1
tcp/25
SMTP
Unknown
Medium
335
Apache 2.0.35 to 2.0.50 .htaccess environment variables buffer overflow
2.0
tcp/80
HTTP
Denial Of Service
Medium
237
Apache 2.0.35 to 2.0.50 apr-util library IPv6 URL parsing denial of service
2.0
tcp/80
HTTP
Denial Of Service
Medium
236
Apache 2.0.47 to 2.0.49 ap_escape_html memory allocation denial of service
2.0
tcp/80
HTTP
Buffer Overflow
Medium
239
Apache 2.0.51 Satisfy directive access control bypass
2.0
tcp/80
HTTP
Evasion
Medium
259
Apache 2.x HTTPS mod_php hijacking
2.1
tcp/80
HTTP
Configuration
High
205
Apache prior 1.3.33 Mod_Proxy Remote Negative Content-Length Buffer Overflow Vulnerability
1.0
tcp/80
Denial of Service
Buffer Overflow
High
279
Apache prior 1.3.26 chunked-encoding memory corruption
2.0
tcp/80
HTTP
Unknown
Medium
244
Apache prior 1.3.28 ETag header inode number information disclosure
2.0
tcp/80
HTTP
Configuration
Medium
256
Apache prior 1.3.28 mod_alias code execution
2.0
tcp/80
HTTP
Configuration
High
8
Apache prior 1.3.29 and 2.0.48 multiple modules locale buffer overflows
2.0
tcp/80
HTTP
Buffer Overflow
Medium
241
Apache prior 1.3.30 MIME boundary information disclosure
2.0
tcp/80
HTTP
Buffer Overflow
Medium
251
Apache prior 1.3.31 and prior 2.0.49 connection blocking denial of service
1.0
tcp/80
HTTP
Denial Of Service
Medium
310
Apache prior 1.3.31 and prior 2.0.49 error log escape sequence injection
1.1
tcp/80
HTTP
Unknown
Low
309
Apache prior 1.3.32 htpasswd buffer overflow
2.0
tcp/80
HTTP
Buffer Overflow
Medium
246
Apache prior 1.3.33 mod_include priviledge escalation
1.0
tcp/80
HTTP
Unknown
Medium
308
Apache prior 2.0.47 mod_auth malformed password memory corruption
2.0
tcp/80
HTTP
Unknown
Medium
243
Apache prior 2.0.47 SSLCipherSuite weak CipherSuite renegotiation
2.0
tcp/80
HTTP
Weak Encryption
Medium
242
Apache prior 2.0.48 mod_cgid CGI data redirection
2.0
tcp/80
HTTP
Configuration
Medium
257
Apache prior 2.0.49 cygwin directory traversal
2.0
tcp/80
HTTP
Directory Traversal
High
253
Apache prior 2.0.49 htaccess LIMIT directive bypass
2.0
tcp/80
HTTP
Evasion
Medium
252
Apache prior 2.0.49 HTTP response splitting
2.0
tcp/80
HTTP
Cross Site Scripting
Medium
240
Apache prior 2.0.49 mod_disk_cache module client authentication weak encryption
2.0
tcp/80
HTTP
Weak Encryption
Medium
245
Apache prior 2.0.49 mod_perl file descriptor leakage
2.0
tcp/80
HTTP
Configuration
Medium
258
Apache prior 2.0.49 mod_php global variables information disclosure
2.0
tcp/80
HTTP
Buffer Overflow
Medium
255
Apache prior 2.0.49 mod_userdir information disclosure
2.0
tcp/80
HTTP
Buffer Overflow
Medium
250
Apache prior 2.0.50 mod_ssl Denial of Service
2.0
tcp/80
HTTP
Denial Of Service
Medium
137
Apache prior 2.0.50 mod_ssl SSL_Util_UUEncode_Binary buffer overflow
2.0
tcp/80
HTTP
Buffer Overflow
Medium
238
Apache prior 2.0.51-dev mod_dav denial of service
2.0
tcp/80
HTTP
Denial Of Service
Medium
227
Apache prior 2.0.52 Multiple Spaces CPU Overload Denial-of-Service
1.0
tcp/80
Denial of Service
Denial Of Service
High
280
Apache web server 2.2.3 detection
2.3
tcp/80
HTTP
Configuration
Low
343
Apache web server detection
2.0
tcp/80
HTTP
Configuration
Low
1
Apache2 Double Slash Dir Index
2.0
tcp/80
HTTP
Configuration
Medium
9
APC SmartSlot factory account
1.5
tcp/23
Backdoors
Weak Authentication
High
67
Aprox Portal 3.x Directory Traversal
2.0
tcp/80
CGI
Directory Traversal
High
185
Arkoon appliance ssh port tcp-822 detection
1.1
tcp/822
Firewalls
Configuration
Low
136
AtomicBoard prior 0.9.42 Directory Traversal
2.0
tcp/80
CGI
Directory Traversal
High
17
AXIS 560 Print Server ftp detection
1.5
tcp/21
FTP
Configuration
Low
43
Axis Camera default password
1.0
tcp/23
Network Devices
Configuration
Medium
299
BBS E-Market Professional Arbitrary File Inclusion
2.0
tcp/80
CGI
Cross Site Scripting
High
232
BEA WebLogic 8.1 HTTP response splitting
2.0
tcp/80
CGI
Cross Site Scripting
Medium
231
BEA WebLogic prior 8.1 multiple vulnerabilities
2.0
tcp/80
CGI
Configuration
High
228
BitKeeper remote command execution
1.0
tcp/8080
HTTP
Unknown
High
301
Blog Torrent btdownload.php directory traversal
1.0
tcp/80
HTTP
Directory Traversal
High
302
Brio Unix odscgi directory traversal
1.0
tcp/80
CGI
Directory Traversal
High
336
Brio Windows odscgi directory traversal
1.0
tcp/80
CGI
Directory Traversal
High
337
bttlxeForum SQL injection
2.0
tcp/80
HTTP
SQL Injection
High
16
Cart32 ChangeAdminPassword
2.0
tcp/80
HTTP
Configuration
High
15
Cat Soft Serv-U FTP server prior 2.5e CWD directory traversal
1.1
tcp/21
FTP
Directory Traversal
High
216
Cat Soft Serv-U FTP server prior 2.5f zero string denial of service
1.1
tcp/21
FTP
Denial Of Service
Medium
213
Cat Soft Serv-U FTP server prior 2.5i CWD ..%20 directory traversal
1.1
tcp/21
FTP
Directory Traversal
Medium
212
Cat Soft Serv-U FTP server prior 4.2.0 chmod buffer overflow
1.1
tcp/21
FTP
Buffer Overflow
High
214
Cat Soft Serv-U FTP server prior 4.3.0 MDTM buffer overflow
1.1
tcp/21
FTP
Buffer Overflow
High
215
Cat Soft Serv-U FTP server prior 5.0.0.6 LIST -I buffer overflow
1.1
tcp/21
FTP
Buffer Overflow
High
217
Cat Soft Serv-U FTP server prior 5.x STOU commando DOS device names denial of service
1.3
tcp/21
FTP
Denial Of Service
Medium
211
CDK port tcp/15858 detection
1.0
tcp/15858
Backdoors
Configuration
High
285
CDK port tcp/79 detection
1.0
tcp/79
Backdoors
Configuration
High
286
Cerbere HTTP Proxy prior 1.2 HTTP Host field Denial of Service
2.0
tcp/80
Firewalls
Buffer Overflow
Medium
141
cfingerd detection
1.1
tcp/79
Finger
Configuration
Low
128
cfingerd prior 1.4.4 format string
1.2
tcp/79
Finger
Format String
High
127
cfingerd search information disclosure
1.1
tcp/79
Finger
Configuration
Medium
117
cfingerd version detection
1.1
tcp/79
Finger
Configuration
Medium
129
cfWebStore up to 5.0.0 SQL injection
2.0
tcp/80
CGI
SQL Injection
High
78
CheckPoint Firewall-1 telnet authentication detection
1.4
tcp/256
Firewalls
Configuration
Low
30
CheckPoint Firewall-1 web administration detection
1.3
tcp/80
Firewalls
Configuration
Low
31
Cherokee prior 0.4.17.1 auth_pam format string
2.0
tcp/80
HTTP
Format String
High
268
Cherokee prior 0.4.8 error page cross site scripting
2.0
tcp/80
HTTP
Cross Site Scripting
Medium
267
Cisco 645 http get Denial of Service
1.5
tcp/80
Network devices
Denial Of Service
High
25
Cisco 675 router without password
1.0
tcp/23
Network Devices
Configuration
High
290
Cisco ATA-186 http password attack
2.0
tcp/80
Network devices
Weak Authentication
High
24
Cisco Catalyst http password download
2.0
tcp/80
Network devices
Missing Authentication
High
27
Cisco device without password
1.0
tcp/23
Network Devices
Configuration
High
293
Cisco PIX Firewall prior 5.2 SMTP content filter HELP bypass
1.1
tcp/25
Firewalls
Configuration
Medium
200
Cisco Secure ACS Management Interface Login Overflow
1.4
tcp/2002
Network devices
Denial Of Service
High
26
Cisco port tcp/7161 carriage return Denial of Service
1.3
tcp/7161
Network devices
Denial Of Service
High
18
Cisco VPN Concentrator 3000 prior 3.5.4 extended enumeration
2.0
tcp/80
Network devices
Configuration
Medium
229
Citrix NFuse prior 1.6 launch.asp getLastError() Cross Site Scripting
2.0
tcp/80
CGI
Cross Site Scripting
Medium
169
Citrix NFuse prior 1.6 launch.jsp getLastError() Cross Site Scripting
2.0
tcp/80
CGI
Cross Site Scripting
Medium
170
Citrix Server detection
1.2
tcp/1494
Enumeration
Configuration
Medium
144
Citrix Web PN Server detection
2.0
tcp/80
HTTP
Configuration
Medium
157
ColdFusion MX 6.1 on IIS File Contents Disclosure
1.5
tcp/80
Enumeration
Configuration
Medium
320
Corel Linux FTP Server detection
1.3
tcp/21
FTP
Configuration
Low
55
Courier IMAP up to 3.0.0 buffer overflow
1.2
tcp/143
Misc
Buffer Overflow
High
73
Courier SMTP up to 0.45 buffer overflow
1.3
tcp/25
SMTP
Buffer Overflow
High
74
CuteNews prior 1.3.6 index.php Cross Site Scripting
2.0
tcp/80
CGI
Cross Site Scripting
Medium
166
CVSTrac detection
1.1
tcp/80
CGI
Configuration
Medium
274
CVSTrac up to 1.1.4 filediff vulnerability
1.1
tcp/80
CGI
Unknown
Medium
102
Cyrus IMAP server prior 2.1.11 pre-login buffer overflow
1.0
tcp/143
SMTP
Buffer Overflow
High
338
Cyrus IMAP server prior 2.2.10 multiple remote vulnerabilities
1.0
tcp/143
SMTP
Unknown
High
339
dasBlog prior 1.6.0 Referer and User-Agent HTML injection
2.0
tcp/80
CGI
Cross Site Scripting
Medium
50
Daytime service tcp detection
1.3
tcp/13
Misc
Configuration
Low
148
DG/UX Workstation FTP server detection
1.3
tcp/21
FTP
Configuration
Low
52
DirectConnect hub port tcp/411 connection detection
1.1
tcp/411
Peer-to-Peer
Configuration
Medium
138
Easy File Sharing Webserver 1.25 Access Control Bypass
2.0
tcp/80
HTTP
Missing Authentication
Medium
233
Echo service tcp detection
1.5
tcp/7
Misc
Configuration
Low
118
Ecommerce Corp. Online Store Kit More.php SQL Injection
2.0
tcp/80
CGI
SQL Injection
Medium
69
EFS Software Easy File Sharing Web Server prior 1.25 ACL bypass
2.0
tcp/80
HTTP
Directory Traversal
Medium
177
eGroupWare detection
1.0
tcp/80
CGI
Configuration
Medium
276
Emumail WebMail detection
2.0
tcp/80
CGI
Configuration
Low
88
Exim 3.0 to 4.20 EHLO/HELO remote headp corruption
1.2
tcp/25
SMTP
Buffer Overflow
High
80
Exim 3.35 to 4.10 daemon_go() format string
1.3
tcp/25
SMTP
Format String
Medium
79
FakeBO buffer overflow
1.0
tcp/12345
Backdoors
Buffer Overflow
High
296
FastCGI sample echo cross site scripting
1.0
tcp/80
CGI
Cross Site Scripting
High
303
FastCGI sample echo.exe cross site scripting
1.0
tcp/80
CGI
Cross Site Scripting
High
304
FastCGI sample echo2 cross site scripting
1.0
tcp/80
CGI
Cross Site Scripting
High
305
FastCGI sample echo2.exe cross site scripting
1.0
tcp/80
CGI
Cross Site Scripting
High
306
Finger daemon detection
1.1
tcp/79
Finger
Configuration
Medium
147
Finger daemon file read
1.2
tcp/79
Finger
Wrong File Permission
High
131
Finjan SurfinGate ControlPort CONNECT restart command
1.1
tcp/3128
Firewalls
Weak Authentication
Medium
133
FreeBSD 4.1.1 finger daemon file read
1.3
tcp/79
Finger
Wrong File Permission
High
130
F-Secure SSH prior 3.1.0 build 9 password authentication policy evasion
1.4
tcp/22
Backdoors
Evasion
Medium
76
FTP server detection
1.1
tcp/21
FTP
Configuration
Low
209
FTP server USER buffer overflow
1.1
tcp/21
FTP
Buffer Overflow
High
112
ftpd cwd user detection
1.0
tcp/21
FTP
Configuration
Medium
297
GateCrasher detection
1.0
tcp/6969
Backdoors
Configuration
High
287
GateCrasher un-install
1.0
tcp/6969
Backdoors
Configuration
High
288
GirlFriend backdoor 1.0 beta detection
1.1
tcp/21554
Backdoors
Configuration
High
294
GirlFriend backdoor 1.3 detection
1.1
tcp/21544
Backdoors
Configuration
High
295
Gnutella detection
1.3
tcp/6346
Peer-to-Peer
Configuration
Medium
20
Gnutella protocol enumeration
1.3
tcp/6346
Peer-to-Peer
Configuration
Medium
21
HastyMail prior 1.2.0 HTML attachement script execution
2.0
tcp/80
CGI
Cross Site Scripting
Medium
108
Horde IMP prior 3.1 status.php3 cross site scripting
2.0
tcp/80
CGI
Cross Site Scripting
Medium
269
HotOpenTickets privilege escalation
2.0
tcp/80
CGI
Configuration
Medium
103
HP Jet-Direct Print Server detection
1.3
tcp/21
FTP
Configuration
Low
45
HP-UX 9000/700 FTP server detection
1.3
tcp/21
FTP
Configuration
Low
40
HP-UX 9000/800 FTP server detection
1.3
tcp/21
FTP
Configuration
Low
41
HTTP 404 enumeration
2.0
tcp/80
HTTP
Configuration
Low
4
HTTP CGI directory cgi-bin forbidden
2.0
tcp/80
HTTP
Configuration
Low
11
HTTP CGI directory cgi-bin found
2.0
tcp/80
HTTP
Configuration
Low
12
HTTP COM+ Internet Services detection
1.0
tcp/80
HTTP
Configuration
Low
282
HTTP DELETE method support detection
2.0
tcp/80
HTTP
Configuration
Low
159
HTTP /etc/passwd
2.0
tcp/80
HTTP
Configuration
Medium
13
HTTP index.html check
2.0
tcp/80
HTTP
Configuration
Low
3
HTTP OPTIONS method support detection
2.0
tcp/80
HTTP
Configuration
Low
158
HTTP PROPFIND internal IP address leakage
2.0
tcp/80
HTTP
Configuration
Medium
70
HTTP Proxy connect method detection
1.1
tcp/8080
Firewalls
Configuration
High
197
HTTP Proxy port tcp/8080 detection
1.3
tcp/8080
Firewalls
Configuration
Medium
196
HTTP TRACE method support detection
2.0
tcp/80
HTTP
Configuration
Low
160
HTTP 1.0 support detection
2.0
tcp/80
HTTP
Configuration
Low
64
HTTP 1.1 support detection
2.0
tcp/80
HTTP
Configuration
Low
65
IBM AIX 4.3 FTP server detection
1.2
tcp/21
FTP
Configuration
Low
42
ICECast AVLlib prior 1.3.12 remote buffer overflow
1.1
tcp/8000
Misc
Buffer Overflow
Medium
264
ICECast AVLlib prior 1.3.12 trailing characters denial of service detection
1.1
tcp/8000
Misc
Denial Of Service
Medium
265
ICECast AVLlib prior 1.3.12 trailing characters denial of service exploit
1.1
tcp/8000
Misc
Denial Of Service
Medium
266
identd detection
1.1
tcp/113
Enumeration
Configuration
Low
152
IlohaMail detection
1.1
tcp/80
CGI
Configuration
Low
195
IMAP unencrypted cleartext logins
1.0
tcp/143
Misc.
Missing Encryption
Low
332
INL ulog-php prior 0.8.2 port.php SQL Injection
2.0
tcp/80
CGI
SQL Injection
High
181
InMail inmail.pl cross site scripting
1.0
tcp/80
CGI
Cross Site Scripting
Medium
317
InShop inshop.pl cross site scripting
1.0
tcp/80
CGI
Cross Site Scripting
Medium
318
Invision PowerBoard cross site scripting
2.0
tcp/80
CGI
Cross Site Scripting
High
75
Ipswitch IMail prior 8.13 multiple buffer overflows
2.0
tcp/80
CGI
Buffer Overflow
High
188
Ipswitch WS_FTP Server prior 3.0.1 FTP bounce detection
1.1
tcp/21
FTP
Configuration
Medium
122
Ipswitch WS_FTP Server prior 3.0.1 PASV connection hijacking
1.1
tcp/21
FTP
Configuration
Medium
123
Ipswitch WS_FTP Server prior 4.0.0 ALLO handler buffer overflow
1.1
tcp/21
FTP
Buffer Overflow
High
124
Ipswitch WS_FTP Server prior 4.0.0 file REST argument Denial Of Service
1.1
tcp/21
FTP
Denial Of Service
Medium
126
Ipswitch WS_FTP Server prior 4.0.0 unknown system privileges elevation
1.1
tcp/21
FTP
Unknown
Medium
125
Ipswitch WS_FTP Server prior 5.0.2 CWD path denial of service
1.2
tcp/21
FTP
Denial Of Service
Medium
114
ISC INN prior 2.2.2 news articles buffer overflows
1.1
tcp/119
Denial of Service
Buffer Overflow
High
189
JanaServer prior 2.4.5 malformed request denial of service
1.0
tcp/80
HTTP
Denial Of Service
Medium
324
Jerod Moemeka Xedus 1.0 Cross Site Scripting
1.1
tcp/4274
HTTP
Cross Site Scripting
Medium
167
Jerod Moemeka Xedus 1.0 Directory Traversal
1.1
tcp/4274
HTTP
Directory Traversal
High
168
Jerod Moemeka Xedus detection
1.1
tcp/4274
HTTP
Directory Traversal
Low
194
Jigunet Corporation TwinFTP Server 1.0.3 R2 Directory Traversal
1.2
tcp/21
FTP
Directory Traversal
High
234
Kazaa Altnet Download Manager prior 4.0.0.4 ActiveX control buffer overflow
1.1
tcp/1214
Peer-to-Peer
Buffer Overflow
High
143
Kazaa or Morpheus http server detection
1.3
tcp/1214
Peer-to-Peer
Configuration
Medium
22
Keene Digital Media Server prior 1.0.2 Directory Traversal
1.2
tcp/8080
HTTP
Directory Traversal
Medium
182
Keene Digital Media Server prior 1.0.3 Adminsitrative Authentication Bypass
1.2
tcp/8080
HTTP
Configuration
High
183
Keene Digital Media Server prior 1.0.3 dlasx.kspx Cross Site Scripting
2.0
tcp/80
CGI
Cross Site Scripting
Medium
191
Keene Digital Media Server prior 1.0.3 mediashowplay.kspx Cross Site Scripting
2.0
tcp/80
CGI
Cross Site Scripting
Medium
192
Keene Digital Media Server prior 1.0.3 slideshow.kspx Cross Site Scripting
2.0
tcp/80
CGI
Cross Site Scripting
Medium
190
Kerio MailServer prior 6.0.1 buffer overflow http check
2.0
tcp/80
HTTP
Buffer Overflow
High
92
Kerio MailServer prior 6.0.1 buffer overflow smtp check
1.2
tcp/25
SMTP
Buffer Overflow
High
93
Kerio MailServer prior 6.0.3 unknown flaw
1.1
tcp/25
SMTP
Unknown
High
261
KorWeblog prior 1.6.2 directory listing
1.0
tcp/80
CGI
Directory Traversal
Medium
278
Kyocera PrintServer detection
1.3
tcp/21
FTP
Configuration
Low
44
LCDproc server detection
1.0
tcp/13666
Misc.
Configuration
Low
349
LCDproc server newer than 4.0 detection
1.0
tcp/13666
Network Devices
Configuration
Low
281
libgtop_daemon format string
1.0
tcp/42800
Misc
Format String
High
291
LogicNow PerlDesk pdesk.cgi directory traversal
2.0
tcp/80
CGI
Directory Traversal
Medium
248
Macintosh Appleshare FTP server detection
1.3
tcp/21
FTP
Configuration
Low
38
Macintosh NetPresenz FTP server detection
1.3
tcp/21
FTP
Configuration
Low
39
Macintosh OS X FTP server detection
1.4
tcp/21
FTP
Configuration
Low
46
MailEnable 1.5a to 1.5e IMAP search denial of service
1.0
tcp/143
SMTP
Denial Of Service
Medium
311
MailEnable prior 1.5.1 unspecified vulnerability
1.1
tcp/25
SMTP
Unknown
Medium
307
MailEnable prior 1.52 IMAP service buffer overflows
1.0
tcp/143
SMTP
Buffer Overflow
High
333
MailEnable SMTP Connector Service 1.x DNS Lookup denial of service
1.1
tcp/25
SMTP
Denial Of Service
Medium
223
McAfee IntruShield management console http detection
2.0
tcp/80
HTTP
Configuration
Low
270
Merak Mail Server prior 5.2.7 address.html Cross Site Scripting
1.2
tcp/4096
CGI
Cross Site Scripting
Medium
172
Merak Mail Server prior 5.2.7 attachment.html Cross Site Scripting
1.2
tcp/4096
CGI
Cross Site Scripting
Medium
175
Merak Mail Server prior 5.2.7 calendar.html Cross Site Scripting
1.2
tcp/4096
CGI
Cross Site Scripting
Medium
176
Merak Mail Server prior 5.2.7 folder.html Cross Site Scripting
1.2
tcp/4096
CGI
Cross Site Scripting
Medium
174
Merak Mail Server prior 5.2.7 settings.html Cross Site Scripting
1.2
tcp/4096
CGI
Cross Site Scripting
Medium
173
Mercur Mailserver 3.2 directory traversal
1.2
tcp/25
SMTP
Evasion
High
85
Mercur Mailserver 3.2 multiple buffer overflows
1.2
tcp/25
SMTP
Buffer Overflow
High
84
Mercur Mailserver 3.3 to 4.2 IMAP Auth remote buffer overflow
1.2
tcp/25
SMTP
Buffer Overflow
High
83
Mercur Mailserver detection
1.2
tcp/25
SMTP
Configuration
Low
86
Mercur SMTP-Server 3.3 to 4.2 control service buffer overflow
1.2
tcp/25
SMTP
Buffer Overflow
Medium
82
Mercury Mail up to 4.01 IMAP buffer overflow
1.0
tcp/143
SMTP
Buffer Overflow
High
314
Microsoft CIS http detection
1.0
tcp/80
HTTP
Configuration
Low
348
Microsoft Exchange Outlook Web Access detection
2.0
tcp/80
CGI
Configuration
Medium
105
Microsoft Frontpage detection
2.0
tcp/80
CGI
Configuration
Medium
111
Microsoft FTP Service 3.0 detection
1.4
tcp/21
FTP
Configuration
Low
59
Microsoft FTP Service 4.0 detection
1.4
tcp/21
FTP
Configuration
Low
60
Microsoft FTP Service 5.0 detection
1.4
tcp/21
FTP
Configuration
Low
61
Microsoft FTP Service 5.1 detection
1.4
tcp/21
FTP
Configuration
Low
62
Microsoft IIS detection
2.0
tcp/80
HTTP
Configuration
Low
2
Microsoft Internet Information Server 4.0 non existent file .ida path disclosure
1.0
tcp/80
HTTP
Configuration
Low
315
Microsoft Internet Information Server 4.0 non existent file .idq path disclosure
1.0
tcp/80
HTTP
Configuration
Low
316
Microsoft NNTP server prior 5.0.2195 and prior 6.0.3790 long message buffer overflow
1.0
tcp/119
Windows
Buffer Overflow
High
313
Microsoft Windows chargen service tcp detection
1.1
tcp/19
Misc
Configuration
Low
151
Microsoft Windows QotD service tcp detection
1.1
tcp/17
Misc
Configuration
Low
149
Microsoft Windows Telnet Server detection
1.2
tcp/23
Backdoors
Configuration
Medium
146
MLdonkey telnet service detection
1.4
tcp/4000
Peer-to-Peer
Configuration
Medium
14
MLdonkey www interface detection
2.0
tcp/4080
Peer-to-Peer
Configuration
Medium
19
MLdonkey web interface wml files detection
1.1
tcp/4080
Peer-to-Peer
Configuration
Medium
142
Monkey Webserver HTTP POST empty content-length Denial of Service
2.0
tcp/80
HTTP
Denial Of Service
Medium
29
Moodle up to 1.4 post.php cross site scripting
1.1
tcp/21
CGI
Cross Site Scripting
Medium
95
NetAsq IPS-Firewall management port tcp-1300 detection
1.1
tcp/1300
Firewalls
Configuration
Low
134
Netgear RP114 telnet administration detection
1.0
tcp/23
Firewalls
Configuration
Medium
272
Netgear RP114 URL filtering long request evasion
2.0
tcp/80
Firewalls
Evasion
Medium
135
Netgear RP114 web administration detection
1.0
tcp/80
Firewalls
Configuration
Medium
271
Nortel Networks router telnet manager level without password
1.0
tcp/23
Network Devices
Weak Authentication
High
284
Nortel Networks router telnet user level without password
1.0
tcp/23
Network Devices
Configuration
Medium
289
Novell Groupwise 6.0 Servlet Manager default password
1.1
tcp/443
Netware
Weak Authentication
Medium
206
Novell GroupWise WebAccess prior 6.5.3 about html injection
1.0
tcp/80
CGI
Weak Authentication
High
347
Novell GroupWise WebAccess prior 6.5.3 about weak authentication
1.0
tcp/80
CGI
Weak Authentication
High
346
Novell GroupWise WebAccess prior 6.5.3 error weak authentication
1.0
tcp/80
CGI
Weak Authentication
High
345
Novell Netware 5.1 and 6.0 Netbasic Scripting Server %5C directory traversal
2.0
tcp/80
Netware
Directory Traversal
High
208
Novell Netware 6.0 Apache Tomcat directory traversal
2.0
tcp/80
Netware
Directory Traversal
High
207
Open DC Hub prior 0.7.14 Remote Buffer Overflow
1.1
tcp/0
Peer-to-Peer
Buffer Overflow
High
277
OpenCA prior 0.9.1.4 multiple signature validation bypass
2.0
tcp/80
CGI
Weak Authentication
Medium
222
OpenCA prior 0.9.1.6 signature verification bypass
2.0
tcp/80
CGI
Weak Authentication
Medium
221
OpenCA prior 0.9.2-RC6 HTML injection
2.0
tcp/80
CGI
Cross Site Scripting
Medium
201
OpenSSH daemon detection
1.1
tcp/22
Enumeration
Configuration
Low
210
OpenSSL SSL/TLS handshake denial of service
1.5
tcp/443
HTTP
Denial Of Service
High
72
Oracle 9iAS iSQLplus cross site scripting
2.0
tcp/80
HTTP
Cross Site Scripting
Medium
71
Oracle prior 10.0.2 DBS_SCHEDULER port tcp/1521 SQL command execution
1.1
tcp/1521
Misc
Unknown
Medium
139
Oracle prior 10.0.2 DBS_SCHEDULER port tcp/1541 SQL command execution
1.1
tcp/1541
Misc
Unknown
Medium
140
Password Protect SQL injection
2.1
tcp/80
CGI
SQL Injection
High
116
PHP prior 5.0.2 rfc1867.c file upload
2.0
tcp/80
CGI
Configuration
Medium
247
phpBB viewforum.php cross site scripting
2.0
tcp/80
CGI
Cross Site Scripting
Medium
91
phpBB viewtopic.php cross site scripting
2.0
tcp/80
CGI
Cross Site Scripting
Medium
90
phpCMS prior 1.2.1pl1 parser.php cross site scripting
1.0
tcp/80
CGI
Cross Site Scripting
Medium
325
PHP-CSL 0.8 index.php cat_select Cross Site Scripting
2.0
tcp/80
CGI
Cross Site Scripting
Medium
178
phpGroupWare prior 0.9.16.003 cross site scripting
2.0
tcp/80
CGI
Cross Site Scripting
Medium
224
phpMyAdmin prior 2.5.2 db_details_importdocsql.php directory traversal
1.0
tcp/80
CGI
Directory Traversal
High
342
phpMyAdmin prior 2.6.0-pl2 remote command execution
1.0
tcp/80
CGI
Unknown
High
341
phpMyFAQ up to 1.3.13 action parameter arbitrary file disclosure
2.0
tcp/80
CGI
Unknown
Medium
96
PHPNews prior 1.2.4 sendtofriend.php SQL injection
1.0
tcp/80
CGI
SQL Injection
High
319
phpScheduleIt prior 1.0.0 RC1 HTML Injection
2.0
tcp/80
CGI
Cross Site Scripting
Medium
121
Pinnacle ShowCenter BSE web server detection
1.2
tcp/8000
HTTP
Configuration
Low
219
Pinnacle ShowCenter BSE web server skin denial of service
1.2
tcp/8000
HTTP
Denial Of Service
Medium
220
POP2 unencrypted cleartext logins
1.0
tcp/109
SMTP
Missing Encryption
Low
331
POP3 unencrypted cleartext logins
1.0
tcp/110
SMTP
Missing Encryption
Low
330
PostNuke detection
1.0
tcp/80
CGI
Configuration
Medium
275
Post-Nuke 0.72 News Module sid cross site scripting
2.0
tcp/80
CGI
Cross Site Scripting
Medium
249
Post-Nuke pnTresMailer codebrowserpntm.php directory traversal
1.0
tcp/80
CGI
Directory Traversal
High
327
ProFTPD prior 1.5.2 PASS buffer overflow
1.1
tcp/21
FTP
Buffer Overflow
High
110
Proxy gopher support detection
1.3
tcp/8080
Firewalls
Configuration
Low
35
Proxy port tcp/8080 detection
1.3
tcp/8080
Firewalls
Configuration
Medium
33
Proxy POST port tcp/21 detection
2.0
tcp/80
Firewalls
Configuration
High
32
PsNews prior 1.2 index.php function Cross Site Scripting
2.0
tcp/80
CGI
Cross Site Scripting
Medium
187
QMS MagiColor Print Server detection
1.3
tcp/21
FTP
Configuration
Low
54
QotD service tcp years detection
1.1
tcp/17
Misc
Configuration
Low
150
QuiXplorer prior 2.3.1 index.php directory traversal
2.0
tcp/80
CGI
Missing Authentication
Medium
97
Real VNC Server Detection
4.1
tcp/5800
HTTP
Configuration
Low
344
remwatch daemon command execution
1.0
tcp/5556
Backdoors
Configuration
High
292
Cat Soft Serv-U FTP Server Default Administration Account Vulnerability
1.1
tcp/21
FTP
Configuration
Medium
235
RiSearch prior 0.99.8 show.pl directory traversal
2.0
tcp/80
CGI
Missing Authentication
Medium
98
rsync prior 2.6.3 path sanitation vulnerability
1.2
tcp/873
Misc
Weak Authentication
Medium
99
rtsp alternate port tcp/8554 detection
1.1
tcp/8554
Enumeration
Configuration
Low
154
rtsp port tcp/554 detection
1.1
tcp/554
Enumeration
Configuration
Low
153
SandSurfer login.cgi cross site scripting
2.0
tcp/80
CGI
Cross Site Scripting
Medium
94
SapporoWorks BlackJumboDog FTP server multiple command buffer overflow
1.1
tcp/21
FTP
Buffer Overflow
Medium
101
SCO i2odialogd buffer overflow
1.0
tcp/360
HTTP
Buffer Overflow
High
298
Seiko Epson Type B Print Server detection
1.3
tcp/21
FTP
Configuration
Low
66
Sendmail detection
2.0
tcp/25
SMTP
Configuration
Low
5
Serendipity prior 0.7.0beta3 SQL injections
1.0
tcp/80
CGI
SQL Injection
High
312
ShopCartCGI arbitrary file reading
2.0
tcp/80
HTTP
Configuration
High
68
Silent-Storm Portal multiple input validation vulnerabilities
2.0
tcp/80
CGI
Cross Site Scripting
Medium
262
SMC Routers remote administration without authentication
1.2
tcp/1900
Network Devices
Missing authentication
High
186
SMTP ESMTP detection
2.0
tcp/25
SMTP
Configuration
Low
6
SMTP HELP detection
2.0
tcp/25
SMTP
Configuration
Low
7
SMTP mail relay test
1.1
tcp/25
SMTP
Configuration
Medium
156
SMTP spam filter test
1.1
tcp/25
SMTP
Configuration
Medium
165
SpiderSales Shopping Cart SQL injection
2.0
tcp/80
CGI
SQL Injection
High
104
Squid prior 2.5.STABLE7 Web Proxy Cache Remote Denial of Service Vulnerability
1.1
tcp/3128
Denial of Service
Denial Of Service
Low
321
Squid proxy port tcp/3128 detection
1.5
tcp/3128
Firewalls
Configuration
Medium
34
Squid proxy prior 2.4.STABLE7 various buffer overflows
1.1
tcp/3128
Firewalls
Buffer Overflow
High
204
Squid proxy up to 2.5 NTLM authentication ntlm_fetch_string Denial of Service
1.1
tcp/3128
Firewalls
Buffer Overflow
Medium
203
Squid proxy up to 2.5.STABLE6 clientAbortBody denial of service
1.1
tcp/3128
Firewalls
Denial Of Service
Medium
218
SSH protocol version 1.33 detection
1.2
tcp/22
Enumeration
Configuration
Low
164
SSH protocol version 1.5 detection
1.2
tcp/22
Enumeration
Configuration
Low
161
SSH protocol version 1.99 detection
1.2
tcp/22
Enumeration
Configuration
Low
162
SSH protocol version 2.0 detection
1.2
tcp/22
Enumeration
Configuration
Low
163
SSH server protocol mismatch detection
1.3
tcp/22
Enumeration
Configuration
Low
155
Stalker Internet Mail Server 1.6 buffer overflow
1.2
tcp/25
SMTP
Buffer Overflow
High
81
Standard & Poors detection
1.3
tcp/21
FTP
Configuration
High
63
StoneGate firewall client authentication detection
1.4
tcp/2543
Firewalls
Configuration
Medium
36
Sun and Netscape NSS Library SSL Buffer Overflow
1.1
tcp/443
Misc
Buffer Overflow
High
322
Sun Java System Web and Application Server Denial-of-Service
1.5
tcp/443
Denial of Service
Denial Of Service
High
323
Sun Solaris 4.1 FTP server detection
1.4
tcp/21
FTP
Configuration
Low
56
Sun Solaris 5.6 FTP server detection
1.4
tcp/21
FTP
Configuration
Low
58
Sun Solaris 5.7 FTP server detection
1.4
tcp/21
FTP
Configuration
Low
57
Sun Solaris unused accounts disclosure
1.3
tcp/79
Finger
Configuration
Medium
28
SWsoft Plesk login_up.php3 reloaded cross site scripting
2.0
tcp/80
CGI
Cross Site Scripting
Medium
109
Symantec Raptor Firewall 6.5 Security Gateway ftp server detection
1.0
tcp/21
Firewalls
Configuration
Medium
273
Symantec Raptor Firewall 6.5 Simple Secure Web Server detection
2.0
tcp/80
Firewalls
Configuration
Medium
198
Symantec Raptor Firewall 6.5 weak ISN detection
2.0
tcp/80
Firewalls
Weak Authentication
Medium
199
Telnet guest account empy password
1.2
tcp/23
Backdoors
Weak Authentication
High
132
TikiWiki prior 1.8.2 multiple input validation vulnerabilities
2.0
tcp/80
CGI
Configuration
High
180
TinyWeb 1.9 Denial of Service
2.0
tcp/80
HTTP
Denial Of Service
High
10
Titan FTP Server prior 2.03 directory traversal
1.1
tcp/21
FTP
Directory Traversal
High
193
Titan FTP Server prior 3.22 CWD heap overflow
1.1
tcp/21
FTP
Buffer Overflow
High
115
TorrentTrader SQL Injection
2.0
tcp/80
CGI
SQL Injection
High
119
Trend Micro InterScan VirusWall SMTP detection
1.2
tcp/25
SMTP
Configuration
Low
87
Trinity v3 detection
1.0
tcp/33270
Backdoors
Configuration
High
283
Turbo Seek prior 1.7.2 tseekdir_cgi directory traversal
2.0
tcp/80
CGI
Directory Traversal
High
230
TYPSoft FTP prior 0.97.5 directory traversal
1.1
tcp/21
FTP
Directory Traversal
Medium
226
TYPSoft FTP up to 1.10 ntdll.dll empty user name denial of service
1.1
tcp/21
FTP
Configuration
Medium
225
TYPSoft FTP up to 1.11 RETR denial of service
1.2
tcp/21
FTP
Buffer Overflow
Medium
202
Unix SVR4 FTP server detection
1.3
tcp/21
FTP
Configuration
Low
51
Unmanarc Remote Control Server detection
1.0
tcp/3360
Backdoors
Configuration
High
340
URCS remote control server detection
1.1
tcp/3360
Backdoors
Configuration
Medium
260
vHost up to 3.1.0r1 cross site scripting
2.0
tcp/80
CGI
Cross Site Scripting
Medium
89
Virgil CGI Scanner 0.x command execution
2.0
tcp/80
HTTP
Configuration
High
37
w-Agora multiple input validation vulnerabilities
2.0
tcp/80
CGI
Cross Site Scripting
Medium
263
Washington University wu-ftpd prior 2.6.2 S/KEY authentication overflow
1.2
tcp/21
FTP
Buffer Overflow
Medium
106
Washington University wu-ftpd prior 2.6.3 MAIL_ADMIN overflow
1.2
tcp/21
FTP
Buffer Overflow
Medium
107
Washington University wu-ftpd up to 2.6.2 restricted-gid unauthorized access
1.3
tcp/21
FTP
Configuration
High
77
WebAPP 0.9.9 index.cgi Directory Traversal
2.0
tcp/80
CGI
Directory Traversal
High
179
WebMatic prior 1.9 unknown vulnerability
2.0
tcp/80
CGI
Cross Site Scripting
Medium
171
Webmin detection
1.1
tcp/10000
CGI
Configuration
Medium
145
WinMX detection
1.5
tcp/6699
Peer-to-Peer
Configuration
Medium
23
WS_FTP Server prior 5.0.3 multiple flaws
1.0
unknown/21
FTP
Unknown
High
328
Xerox DC 2 FTP server detection
1.3
tcp/21
FTP
Configuration
Low
47
Xerox DC 4 FTP server detection
1.3
tcp/21
FTP
Configuration
Low
48
Xerox DC FTP server detection
1.3
tcp/21
FTP
Configuration
Low
49
XOOPS Dictionary Module Cross Scripting
2.0
tcp/80
CGI
Cross Site Scripting
High
120
YaBB Gold 1 prior SP 1.3.2 multiple input validation
1.1
tcp/80
CGI
Unknown
Medium
329
YaBB Gold 1 prior SP 1.4 Shadow BBCode tag JavaScript injection
1.1
tcp/80
CGI
Cross Site Scripting
Medium
326
YABBSE path disclosure
2.0
tcp/80
HTTP
Configuration
Low
184
YaPiG 0.92b remote server-side script execution
2.0
tcp/80
CGI
Cross Site Scripting
Medium
53
Youngzsoft CMailServer prior 5.2.1 multiple remote vulnerabilities
1.0
tcp/25
SMTP
Unknown
High
334
This file was generated by the
Attack Tool Kit (ATK)
, the open-sourced security scanner and exploiting framework.