Nessus Report
Nessus Scan Report
Thu, 08 Sep 2016 09:58:54 GMT-0500
Table Of Contents
Hosts Summary (Executive).................................................................................................3
•192.168.10.2................................................................................................................................................................ 4
Hosts Summary (Executive)
192.168.10.2
Summary
Critical High Medium Low Info Total
0 0 10 8 42 60
Details
Severity Plugin Id Name
Medium (6.4) 11356 NFS Exported Share Information Disclosure
Medium (5.0) 20007 SSL Version 2 and 3 Protocol Detection
Medium (5.0) 42256 NFS Shares World Readable
Medium (5.0) 81606 SSL/TLS EXPORT_RSA <= 512-bit Cipher Suites Supported (FREAK)
Medium (4.3) 26928 SSL Weak Cipher Suites Supported
Medium (4.3) 78479 SSLv3 Padding Oracle On Downgraded Legacy Encryption Vulnerability
(POODLE)
Medium (4.3) 90317 SSH Weak Algorithms Supported
Medium (4.0) 52609 IMAP Service STARTTLS Plaintext Command Injection
Medium (4.0) 52610 POP3 Service STLS Plaintext Command Injection
Medium (4.0) 89058 SSL DROWN Attack Vulnerability (Decrypting RSA with Obsolete and
Weakened eNcryption)
Low (2.6) 15855 POP3 Cleartext Logins Permitted
Low (2.6) 31705 SSL Anonymous Cipher Suites Supported
Low (2.6) 65821 SSL RC4 Cipher Suites Supported (Bar Mitzvah)
Low (2.6) 70658 SSH Server CBC Mode Ciphers Enabled
Low (2.6) 71049 SSH Weak MAC Algorithms Enabled
Low (2.6) 83738 SSL/TLS EXPORT_DHE <= 512-bit Export Cipher Suites Supported
(Logjam)
Low (2.6) 83875 SSL/TLS Diffie-Hellman Modulus <= 1024 Bits (Logjam)
Low (2.6) 91572 OpenSSL AES-NI Padding Oracle MitM Information Disclosure
Info 10114 ICMP Timestamp Request Remote Date Disclosure
Info 10185 POP Server Detection
Info 10223 RPC portmapper Service Detection
Info 10263 SMTP Server Detection
Info 10267 SSH Server Type and Version Information
Info 10287 Traceroute Information
Info 10302 Web Server robots.txt Information Disclosure
4
Info 10437 NFS Share Export List
Info 10719 MySQL Server Detection
Info 10863 SSL Certificate Information
Info 10881 SSH Protocol Versions Supported
Info 10884 Network Time Protocol (NTP) Server Detection
Info 11111 RPC Services Enumeration
Info 11153 Service Detection (HELP Request)
Info 11219 Nessus SYN scanner
Info 11414 IMAP Service Banner Retrieval
Info 11936 OS Identification
Info 19506 Nessus Scan Information
Info 21643 SSL Cipher Suites Supported
Info 22964 Service Detection
Info 24260 HyperText Transfer Protocol (HTTP) Information
Info 25220 TCP/IP Timestamps Supported
Info 25342 XMPP Server Detection
Info 39520 Backported Security Patch Detection (SSH)
Info 42085 IMAP Service STARTTLS Command Support
Info 42087 POP3 Service STLS Command Support
Info 42088 SMTP Service STARTTLS Command Support
Info 42089 XMPP Service STARTTLS Command Support
Info 43111 HTTP Methods Allowed (per directory)
Info 45590 Common Platform Enumeration (CPE)
Info 46180 Additional DNS Hostnames
Info 50845 OpenSSL Detection
Info 53335 RPC portmapper (TCP)
Info 54580 SMTP Authentication Methods
Info 54615 Device Type
Info 56984 SSL / TLS Versions Supported
Info 57041 SSL Perfect Forward Secrecy Cipher Suites Supported
Info 66334 Patch Report
5
Info 70544 SSL Cipher Block Chaining Cipher Suites Supported
Info 70657 SSH Algorithms and Languages Supported
Info 72584 Zimbra Collaboration Server Web Detection
Info 84502 HSTS Missing From HTTPS Server