Scribd Logo
Upload

Welcome to Scribd!

  • 24 views

    Bad Scanning Web Application Only - Fid1s4

    Uploaded by

    jazba656

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd

    Bad Scanning Web Application Only - Fid1s4

    Uploaded by

    jazba656
    24 views6 pages

    Original Title

    Bad Scanning Web Application Only_fid1s4

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Download as pdf or txt
    24 views6 pages

    Bad Scanning Web Application Only - Fid1s4

    Uploaded by

    jazba656

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Download as pdf or txt
    You are on page 1of 6

    ls

    ia
    nt
    se
    Bad Scanning Web Application Only
    Es

    Report generated by Nessus™ Thu, 07 Mar 2024 14:45:19 GMT


    us
    ss
    Ne
    TABLE OF CONTENTS

    Vulnerabilities by Host
    • 192.168.217.136.........................................................................................................................................................4

    ls
    ia
    nt
    se
    Es
    us
    ss
    Ne
    ls
    ia
    nt
    se
    Vulnerabilities by Host
    Es
    us
    ss
    Ne
    192.168.217.136

    10 7 17 2 18
    CRITICAL HIGH MEDIUM LOW INFO

    Vulnerabilities Total: 54

    SEVERITY CVSS VPR PLUGIN NAME


    V3.0 SCORE

    ls
    CRITICAL 9.8 6.7 158900 Apache 2.4.x < 2.4.53 Multiple Vulnerabilities

    9.8 5.9 161948 Apache 2.4.x < 2.4.54 Multiple Vulnerabilities

    ia
    CRITICAL

    CRITICAL 9.8 9.0 172186 Apache 2.4.x < 2.4.56 Multiple Vulnerabilities

    nt
    CRITICAL 9.8 6.7 11915 Apache < 1.3.29 Multiple Modules Local Overflow

    CRITICAL 9.8 6.7 153584 Apache < 2.4.49 Multiple Vulnerabilities


    se
    CRITICAL 9.0 6.5 170113 Apache 2.4.x < 2.4.55 Multiple Vulnerabilities

    CRITICAL 9.0 9.2 153583 Apache < 2.4.49 Multiple Vulnerabilities


    Es

    CRITICAL 10.0 - 171347 Apache httpd SEoL (<= 1.3.x)

    CRITICAL 10.0* 5.8 15555 Apache mod_proxy Content-Length Overflow


    us

    CRITICAL 10.0* 5.9 17757 OpenSSL < 0.9.7l / 0.9.8d Multiple Vulnerabilities

    HIGH 7.5 4.4 183391 Apache 2.4.x < 2.4.58 Multiple Vulnerabilities
    ss

    HIGH 7.3 4.9 31654 Apache < 1.3.37 mod_rewrite LDAP Protocol URL Handling Overflow
    Ne

    HIGH 7.5* 5.3 13651 Apache mod_ssl ssl_engine_log.c mod_proxy Hook Function Remote
    Format String

    HIGH 9.3* 5.9 17760 OpenSSL < 0.9.8f Multiple Vulnerabilities

    HIGH 9.3* 5.9 57459 OpenSSL < 0.9.8s Multiple Vulnerabilities

    HIGH 7.5* 6.7 58799 OpenSSL < 0.9.8w ASN.1 asn1_d2i_read_bio Memory Corruption

    HIGH 7.5* 5.5 12255 mod_ssl ssl_util_uuencode_binary Remote Overflow

    MEDIUM 6.5 3.3 17696 Apache HTTP Server 403 Error Page UTF-7 Encoded XSS

    192.168.217.136 4
    MEDIUM 5.8 2.4 17756 OpenSSL < 0.9.7k / 0.9.8c PKCS Padding RSA Signature Forgery
    Vulnerability

    MEDIUM 5.3 1.4 88098 Apache Server ETag Header Information Disclosure

    MEDIUM 5.3 - 40984 Browsable Web Directories

    MEDIUM 5.3 4.0 11213 HTTP TRACE / TRACK Methods Allowed

    MEDIUM 5.0* 5.9 59076 OpenSSL 0.9.8 < 0.9.8x DTLS CBC Denial of Service

    MEDIUM 5.0* 5.1 17750 OpenSSL < 0.9.6m / 0.9.7d Denial of Service

    MEDIUM 5.0* 5.1 12110 OpenSSL < 0.9.6m / 0.9.7d Multiple Remote DoS

    MEDIUM 5.0* 3.4 17755 OpenSSL < 0.9.7h / 0.9.8a Protocol Version Rollback

    MEDIUM 5.0* 3.6 17759 OpenSSL < 0.9.8 Weak Default Configuration

    MEDIUM 5.8* 4.2 56996 OpenSSL < 0.9.8h Multiple Vulnerabilities

    MEDIUM 5.0* 5.1 17761 OpenSSL < 0.9.8i Denial of Service

    MEDIUM 5.8* 4.0 17762 OpenSSL < 0.9.8j Signature Spoofing

    MEDIUM 5.0* 3.6 17763 OpenSSL < 0.9.8k Multiple Vulnerabilities

    MEDIUM 5.1* 5.9 17765 OpenSSL < 0.9.8l Multiple Vulnerabilities

    MEDIUM 5.0* 3.6 58564 OpenSSL < 0.9.8u Multiple Vulnerabilities

    MEDIUM 4.3* - 85582 Web Application Potentially Vulnerable to Clickjacking

    LOW 2.1* 2.7 17754 OpenSSL < 0.9.7f Insecure Temporary File Creation

    LOW 2.6* 3.6 64532 OpenSSL < 0.9.8y Multiple Vulnerabilities

    INFO N/A - 48204 Apache HTTP Server Version

    INFO N/A - 33817 CGI Generic Tests Load Estimation (all tests)

    INFO N/A - 49704 External URLs

    INFO N/A - 84502 HSTS Missing From HTTPS Server

    INFO N/A - 43111 HTTP Methods Allowed (per directory)

    INFO N/A - 10107 HTTP Server Type and Version

    INFO N/A - 24260 HyperText Transfer Protocol (HTTP) Information

    192.168.217.136 5
    INFO N/A - 50344 Missing or Permissive Content-Security-Policy frame-ancestors HTTP
    Response Header

    INFO N/A - 50345 Missing or Permissive X-Frame-Options HTTP Response Header

    INFO N/A - 11219 Nessus SYN scanner

    INFO N/A - 19506 Nessus Scan Information

    INFO N/A - 57323 OpenSSL Version Detection

    INFO N/A - 66334 Patch Report

    INFO N/A - 91815 Web Application Sitemap

    INFO N/A - 11032 Web Server Directory Enumeration

    INFO N/A - 11419 Web Server Office File Inventory

    INFO N/A - 10302 Web Server robots.txt Information Disclosure

    INFO N/A - 10662 Web mirroring

    * indicates the v3.0 score


    was not available; the v2.0
    score is shown

    192.168.217.136 6

    You might also like