Scribd
Upload
248 views6 pages

Scan Zimbra w4wzsp

A Nessus vulnerability scan was performed on the host 192.168.10.2. The scan found 10 medium and 8 low severity issues. Medium issues included information disclosure from NFS shares and support for weak SSL/TLS cipher suites and protocols. Low issues included support for unencrypted POP3 logins and weak SSH encryption algorithms. No critical or high severity issues were detected.

Uploaded by

David Cantos
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
248 views6 pages

Scan Zimbra w4wzsp

A Nessus vulnerability scan was performed on the host 192.168.10.2. The scan found 10 medium and 8 low severity issues. Medium issues included information disclosure from NFS shares and support for weak SSL/TLS cipher suites and protocols. Low issues included support for unencrypted POP3 logins and weak SSH encryption algorithms. No critical or high severity issues were detected.

Uploaded by

David Cantos
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 6

Nessus Report

Nessus Scan Report


Thu, 08 Sep 2016 09:58:54 GMT-0500
Table Of Contents
Hosts Summary (Executive).................................................................................................3
•192.168.10.2................................................................................................................................................................ 4
Hosts Summary (Executive)
192.168.10.2
Summary
Critical High Medium Low Info Total

0 0 10 8 42 60
Details
Severity Plugin Id Name

Medium (6.4) 11356 NFS Exported Share Information Disclosure

Medium (5.0) 20007 SSL Version 2 and 3 Protocol Detection

Medium (5.0) 42256 NFS Shares World Readable

Medium (5.0) 81606 SSL/TLS EXPORT_RSA <= 512-bit Cipher Suites Supported (FREAK)

Medium (4.3) 26928 SSL Weak Cipher Suites Supported

Medium (4.3) 78479 SSLv3 Padding Oracle On Downgraded Legacy Encryption Vulnerability
(POODLE)

Medium (4.3) 90317 SSH Weak Algorithms Supported

Medium (4.0) 52609 IMAP Service STARTTLS Plaintext Command Injection

Medium (4.0) 52610 POP3 Service STLS Plaintext Command Injection

Medium (4.0) 89058 SSL DROWN Attack Vulnerability (Decrypting RSA with Obsolete and
Weakened eNcryption)

Low (2.6) 15855 POP3 Cleartext Logins Permitted

Low (2.6) 31705 SSL Anonymous Cipher Suites Supported

Low (2.6) 65821 SSL RC4 Cipher Suites Supported (Bar Mitzvah)

Low (2.6) 70658 SSH Server CBC Mode Ciphers Enabled

Low (2.6) 71049 SSH Weak MAC Algorithms Enabled

Low (2.6) 83738 SSL/TLS EXPORT_DHE <= 512-bit Export Cipher Suites Supported
(Logjam)

Low (2.6) 83875 SSL/TLS Diffie-Hellman Modulus <= 1024 Bits (Logjam)

Low (2.6) 91572 OpenSSL AES-NI Padding Oracle MitM Information Disclosure

Info 10114 ICMP Timestamp Request Remote Date Disclosure

Info 10185 POP Server Detection

Info 10223 RPC portmapper Service Detection

Info 10263 SMTP Server Detection

Info 10267 SSH Server Type and Version Information

Info 10287 Traceroute Information

Info 10302 Web Server robots.txt Information Disclosure

4
Info 10437 NFS Share Export List

Info 10719 MySQL Server Detection

Info 10863 SSL Certificate Information

Info 10881 SSH Protocol Versions Supported

Info 10884 Network Time Protocol (NTP) Server Detection

Info 11111 RPC Services Enumeration

Info 11153 Service Detection (HELP Request)

Info 11219 Nessus SYN scanner

Info 11414 IMAP Service Banner Retrieval

Info 11936 OS Identification

Info 19506 Nessus Scan Information

Info 21643 SSL Cipher Suites Supported

Info 22964 Service Detection

Info 24260 HyperText Transfer Protocol (HTTP) Information

Info 25220 TCP/IP Timestamps Supported

Info 25342 XMPP Server Detection

Info 39520 Backported Security Patch Detection (SSH)

Info 42085 IMAP Service STARTTLS Command Support

Info 42087 POP3 Service STLS Command Support

Info 42088 SMTP Service STARTTLS Command Support

Info 42089 XMPP Service STARTTLS Command Support

Info 43111 HTTP Methods Allowed (per directory)

Info 45590 Common Platform Enumeration (CPE)

Info 46180 Additional DNS Hostnames

Info 50845 OpenSSL Detection

Info 53335 RPC portmapper (TCP)

Info 54580 SMTP Authentication Methods

Info 54615 Device Type

Info 56984 SSL / TLS Versions Supported

Info 57041 SSL Perfect Forward Secrecy Cipher Suites Supported

Info 66334 Patch Report

5
Info 70544 SSL Cipher Block Chaining Cipher Suites Supported

Info 70657 SSH Algorithms and Languages Supported

Info 72584 Zimbra Collaboration Server Web Detection

Info 84502 HSTS Missing From HTTPS Server

You might also like