Nessus Scan Report - Columbia University

More documents

Recommendations

Info

Plugin ID:22964Port saiscm? (1501/tcp) [-/+]Port www (1581/tcp) [-/+]Service DetectionA web server is running on this port.Plugin ID:22964Port snmp (161/udp) [-/+]SNMP Agent Default Community Name (public)Synopsis:The community name of the remote SNMP server can be guessed.Description:It is possible to obtain the default community name of the remote SNMPserver. An attacker may use this information to gain more knowledgeabout the remote host, or to change the configuration of the remotesystem (if the default community allow such modifications).Risk factor:MediumCVSS Base Score:5.0CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:NSolution:Disable the SNMP service on the remote host if you do not use it, filterincoming UDP packets going to this port, or change the defaultcommunity string.Plugin output:The remote SNMP server replies to the following default communitystring : - publicPlugin ID:41028CVE:CVE-1999-0517BID:2112Other references:OSVDB:209
SNMP Request Network Interfaces EnumerationSynopsis:The list of network interfaces cards of the remote host can be obtainedvia SNMP.Description:It is possible to obtain the list of the network interfaces installed on theremote host by sending SNMP requests with the OID 1.3.6.1.2.1.2.1.0An attacker may use this information to gain more knowledge about thetarget host.Risk factor:NoneSolution:Disable the SNMP service on the remote host if you do not use it, orfilter incoming UDP packets going to this port.Plugin output:Interface 1 information : ifIndex : 1 ifDescr : lo0 ifPhysAddress :Interface 2 information : ifIndex : 2 ifDescr : ce0 ifPhysAddress :00144f3b50fa Interface 3 information : ifIndex : 3 ifDescr : ce0:3ifPhysAddress : 00144f3b50faPlugin ID:10551SNMP Query Installed Software DisclosureSynopsis:The list of software installed on the remote host can be obtained viaSNMP.Description:It is possible to obtain the list of installed software on the remote hostby sending SNMP requests with the OID 1.3.6.1.2.1.25.6.3.1.2 Anattacker may use this information to gain more knowledge about thetarget host.Risk factor:NoneSolution:Disable the SNMP service on the remote host if you do not use it, orfilter incoming UDP packets going to this port.Plugin output:SUNWocfd SUNWcsu SUNWcsr SUNWcsl SUNWcnetr SUNWckrSUNWkvm SUNWcar SUNWcakr FJSVvplu FJSVvplr FJSVhea SUNWcsdSUNWgssc SUNWgss SUNWzlib SUNWopenssl-libraries SUNWsshcuSUNWsshdr SUNWsshdu SUNWsshr SUNWsshu SUNWperl584coreSUNWperl584usr SUNWesu SUNWlibC SUNWlibmsr SUNWlibms SUNWicu
Page 1 and 2: List of hosts156.111.5.207156.111.5
Page 3 and 4: Synopsis:An ONC RPC service is runn
Page 5: Address: reidar@columbia.edu Issuer
Page 9 and 10: SUNWvldu SUNWaclg SUNWvolr SUNWgnom
Page 11 and 12: SUNWefcu SUNWerid SUNWcpdas SUNWeuo
Page 13 and 14: devel SUNWjws2 SUNWgnome-config-dev
Page 15 and 16: SUNWkbreg SUNWsbreg SUNWcupdatemgru
Page 17 and 18: Plugin output:Nessus has negotiated
Page 19 and 20: Synopsis:An ONC RPC service is runn
Page 21 and 22: server to ensure sensitive content
Page 23 and 24: Synopsis:A Telnet server is listeni
Page 25 and 26: Plugin output:Here is the banner fr
Page 27 and 28: Risk factor:NoneSolution:n/aPlugin
Page 29 and 30: NoneSolution:n/aPlugin output:The f
Page 31 and 32: NoneSolution:n/aPlugin output:The f
Page 33 and 34: Synopsis:An SMB server is running o
Page 35 and 36: The remote service is an X Window F
Page 37 and 38: Service DetectionA finger daemon is
Page 39: it is set up with stunnel to encryp

Nessus Scan Report - Columbia University

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?