Va-Pre & Post Vulnerability Scan - JK
Va-Pre & Post Vulnerability Scan - JK
Va-Pre & Post Vulnerability Scan - JK
Report Summary
User Name: IT Support
Login Name: sugen3ts
Company: Solugenix Corporation
User Role: Manager
Address: 1365 N Scottsdale RD Suite 100
City: Scottsdale
State: Arizona
Zip: 85257
Country: United States of America
Created: 07/05/2024 at 04:03:48 AM (GMT-0600)
Launch Date: 07/02/2024 at 05:08:36 AM (GMT-0600)
Active Hosts: 11
Total Hosts: 11
Type: On demand
Status: Finished
Reference: scan/1719918516.26282
Scanner Appliances: SGX_HYD (Scanner 12.18.23-1, Vulnerability Signatures 2.6.85-4)
Duration: 00:09:48
Title: VA-Pre Vulnerability Scan for July-24(JK)
Asset Groups: SGX-Jakarta
IPs: 192.168.70.20-192.168.70.22, 192.168.70.24-192.168.70.26, 192.168.70.30,
192.168.90.1-192.168.90.2, 192.168.90.8-192.168.90.9
Excluded IPs: -
FQDNs: -
Options Profile: Initial Options
Summary of Vulnerabilities
by Severity
Severity Confirmed Potential Information Gathered Total
5 0 0 0 0
4 0 0 0 0
3 0 0 0 0
2 0 0 0 0
1 0 0 44 44
Total 0 0 44 44
5 Biggest Categories
Category Confirmed Potential Information Gathered Total
Information gathering 0 0 22 22
TCP/IP 0 0 11 11
Firewall 0 0 11 11
Total 0 0 44 44
Detailed Results
192.168.70.20 (-, -)
QID: 6
Category: Information gathering
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 01/04/2018
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
The fully qualified domain name of this host, if it was obtained from a DNS server, is displayed in the RESULT section.
IMPACT:
N/A
N/A
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
IP address Host name
192.168.70.20 No registered hostname
1 Firewall Detected
QID: 34011
Category: Firewall
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 04/21/2019
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
A packet filtering device protecting this IP was detected. This is likely to be a firewall or a router using access control lists (ACLs).
IMPACT:
N/A
SOLUTION:
N/A
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
Some of the ports filtered by the firewall are: 20, 21, 22, 23, 25, 53, 80, 111, 135, 443.
QID: 45038
Category: Information gathering
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 09/15/2022
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
The Host Scan Time is the period of time it takes the scanning engine to perform the vulnerability assessment of a single target host. The Host Scan
Time for this host is reported in the Result section below.
The Host Scan Time does not have a direct correlation to the Duration time as displayed in the Report Summary section of a scan results report. The
Duration is the period of time it takes the service to perform a scan task. The Duration includes the time it takes the service to scan all hosts, which
may involve parallel scanning. It also includes the time it takes for a scanner appliance to pick up the scan task and transfer the results back to the
service's Secure Operating Center. Further, when a scan task is distributed across multiple scanners, the Duration includes the time it takes to perform
parallel host scanning on all scanners.
IMPACT:
N/A
SOLUTION:
N/A
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
QID: 82056
Category: TCP/IP
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 10/07/2004
User Modified: -
Edited: No
THREAT:
Attempts to obtain the fully-qualified domain name (FQDN) or the Netbios name failed for this host.
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
No results available
192.168.70.21 (-, -)
QID: 6
Category: Information gathering
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 01/04/2018
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
The fully qualified domain name of this host, if it was obtained from a DNS server, is displayed in the RESULT section.
IMPACT:
N/A
SOLUTION:
N/A
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
1 Firewall Detected
QID: 34011
Category: Firewall
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 04/21/2019
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
A packet filtering device protecting this IP was detected. This is likely to be a firewall or a router using access control lists (ACLs).
IMPACT:
N/A
SOLUTION:
N/A
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
Some of the ports filtered by the firewall are: 20, 21, 22, 23, 25, 53, 80, 111, 135, 443.
QID: 45038
Category: Information gathering
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
THREAT:
The Host Scan Time is the period of time it takes the scanning engine to perform the vulnerability assessment of a single target host. The Host Scan
Time for this host is reported in the Result section below.
The Host Scan Time does not have a direct correlation to the Duration time as displayed in the Report Summary section of a scan results report. The
Duration is the period of time it takes the service to perform a scan task. The Duration includes the time it takes the service to scan all hosts, which
may involve parallel scanning. It also includes the time it takes for a scanner appliance to pick up the scan task and transfer the results back to the
service's Secure Operating Center. Further, when a scan task is distributed across multiple scanners, the Duration includes the time it takes to perform
parallel host scanning on all scanners.
IMPACT:
N/A
SOLUTION:
N/A
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
QID: 82056
Category: TCP/IP
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 10/07/2004
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
Attempts to obtain the fully-qualified domain name (FQDN) or the Netbios name failed for this host.
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
No results available
192.168.70.22 (-, -)
QID: 6
Category: Information gathering
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 01/04/2018
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
The fully qualified domain name of this host, if it was obtained from a DNS server, is displayed in the RESULT section.
IMPACT:
N/A
SOLUTION:
N/A
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
IP address Host name
192.168.70.22 No registered hostname
1 Firewall Detected
QID: 34011
Category: Firewall
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 04/21/2019
THREAT:
A packet filtering device protecting this IP was detected. This is likely to be a firewall or a router using access control lists (ACLs).
IMPACT:
N/A
SOLUTION:
N/A
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
Some of the ports filtered by the firewall are: 20, 21, 22, 23, 25, 53, 80, 111, 135, 443.
QID: 45038
Category: Information gathering
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 09/15/2022
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
The Host Scan Time is the period of time it takes the scanning engine to perform the vulnerability assessment of a single target host. The Host Scan
Time for this host is reported in the Result section below.
The Host Scan Time does not have a direct correlation to the Duration time as displayed in the Report Summary section of a scan results report. The
Duration is the period of time it takes the service to perform a scan task. The Duration includes the time it takes the service to scan all hosts, which
may involve parallel scanning. It also includes the time it takes for a scanner appliance to pick up the scan task and transfer the results back to the
IMPACT:
N/A
SOLUTION:
N/A
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
QID: 82056
Category: TCP/IP
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 10/07/2004
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
Attempts to obtain the fully-qualified domain name (FQDN) or the Netbios name failed for this host.
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
No results available
QID: 6
Category: Information gathering
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 01/04/2018
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
The fully qualified domain name of this host, if it was obtained from a DNS server, is displayed in the RESULT section.
IMPACT:
N/A
SOLUTION:
N/A
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
IP address Host name
192.168.70.24 No registered hostname
1 Firewall Detected
QID: 34011
Category: Firewall
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 04/21/2019
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
A packet filtering device protecting this IP was detected. This is likely to be a firewall or a router using access control lists (ACLs).
IMPACT:
SOLUTION:
N/A
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
Some of the ports filtered by the firewall are: 20, 21, 22, 23, 25, 53, 80, 111, 135, 443.
QID: 45038
Category: Information gathering
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 09/15/2022
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
The Host Scan Time is the period of time it takes the scanning engine to perform the vulnerability assessment of a single target host. The Host Scan
Time for this host is reported in the Result section below.
The Host Scan Time does not have a direct correlation to the Duration time as displayed in the Report Summary section of a scan results report. The
Duration is the period of time it takes the service to perform a scan task. The Duration includes the time it takes the service to scan all hosts, which
may involve parallel scanning. It also includes the time it takes for a scanner appliance to pick up the scan task and transfer the results back to the
service's Secure Operating Center. Further, when a scan task is distributed across multiple scanners, the Duration includes the time it takes to perform
parallel host scanning on all scanners.
IMPACT:
N/A
SOLUTION:
N/A
COMPLIANCE:
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
QID: 82056
Category: TCP/IP
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 10/07/2004
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
Attempts to obtain the fully-qualified domain name (FQDN) or the Netbios name failed for this host.
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
No results available
192.168.70.25 (-, -)
QID: 6
Category: Information gathering
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 01/04/2018
User Modified: -
Edited: No
THREAT:
The fully qualified domain name of this host, if it was obtained from a DNS server, is displayed in the RESULT section.
IMPACT:
N/A
SOLUTION:
N/A
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
IP address Host name
192.168.70.25 No registered hostname
1 Firewall Detected
QID: 34011
Category: Firewall
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 04/21/2019
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
A packet filtering device protecting this IP was detected. This is likely to be a firewall or a router using access control lists (ACLs).
IMPACT:
N/A
SOLUTION:
N/A
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
Some of the ports filtered by the firewall are: 20, 21, 22, 23, 25, 53, 80, 111, 135, 443.
QID: 45038
Category: Information gathering
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 09/15/2022
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
The Host Scan Time is the period of time it takes the scanning engine to perform the vulnerability assessment of a single target host. The Host Scan
Time for this host is reported in the Result section below.
The Host Scan Time does not have a direct correlation to the Duration time as displayed in the Report Summary section of a scan results report. The
Duration is the period of time it takes the service to perform a scan task. The Duration includes the time it takes the service to scan all hosts, which
may involve parallel scanning. It also includes the time it takes for a scanner appliance to pick up the scan task and transfer the results back to the
service's Secure Operating Center. Further, when a scan task is distributed across multiple scanners, the Duration includes the time it takes to perform
parallel host scanning on all scanners.
IMPACT:
N/A
SOLUTION:
N/A
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
QID: 82056
Category: TCP/IP
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 10/07/2004
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
Attempts to obtain the fully-qualified domain name (FQDN) or the Netbios name failed for this host.
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
No results available
192.168.70.26 (-, -)
QID: 6
Category: Information gathering
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 01/04/2018
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
The fully qualified domain name of this host, if it was obtained from a DNS server, is displayed in the RESULT section.
IMPACT:
N/A
SOLUTION:
N/A
COMPLIANCE:
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
IP address Host name
192.168.70.26 No registered hostname
1 Firewall Detected
QID: 34011
Category: Firewall
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 04/21/2019
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
A packet filtering device protecting this IP was detected. This is likely to be a firewall or a router using access control lists (ACLs).
IMPACT:
N/A
SOLUTION:
N/A
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
Some of the ports filtered by the firewall are: 20, 21, 22, 23, 25, 53, 80, 111, 135, 443.
QID: 45038
Category: Information gathering
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 09/15/2022
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
The Host Scan Time is the period of time it takes the scanning engine to perform the vulnerability assessment of a single target host. The Host Scan
Time for this host is reported in the Result section below.
The Host Scan Time does not have a direct correlation to the Duration time as displayed in the Report Summary section of a scan results report. The
Duration is the period of time it takes the service to perform a scan task. The Duration includes the time it takes the service to scan all hosts, which
may involve parallel scanning. It also includes the time it takes for a scanner appliance to pick up the scan task and transfer the results back to the
service's Secure Operating Center. Further, when a scan task is distributed across multiple scanners, the Duration includes the time it takes to perform
parallel host scanning on all scanners.
IMPACT:
N/A
SOLUTION:
N/A
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
QID: 82056
Category: TCP/IP
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 10/07/2004
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
No results available
192.168.70.30 (-, -)
QID: 6
Category: Information gathering
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 01/04/2018
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
The fully qualified domain name of this host, if it was obtained from a DNS server, is displayed in the RESULT section.
IMPACT:
N/A
SOLUTION:
N/A
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
IP address Host name
192.168.70.30 No registered hostname
1 Firewall Detected
THREAT:
A packet filtering device protecting this IP was detected. This is likely to be a firewall or a router using access control lists (ACLs).
IMPACT:
N/A
SOLUTION:
N/A
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
Some of the ports filtered by the firewall are: 20, 21, 22, 23, 25, 53, 80, 111, 135, 443.
QID: 45038
Category: Information gathering
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 09/15/2022
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
IMPACT:
N/A
SOLUTION:
N/A
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
QID: 82056
Category: TCP/IP
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 10/07/2004
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
Attempts to obtain the fully-qualified domain name (FQDN) or the Netbios name failed for this host.
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
No results available
QID: 6
Category: Information gathering
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 01/04/2018
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
The fully qualified domain name of this host, if it was obtained from a DNS server, is displayed in the RESULT section.
IMPACT:
N/A
SOLUTION:
N/A
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
IP address Host name
192.168.90.1 No registered hostname
1 Firewall Detected
QID: 34011
Category: Firewall
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 04/21/2019
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
A packet filtering device protecting this IP was detected. This is likely to be a firewall or a router using access control lists (ACLs).
IMPACT:
SOLUTION:
N/A
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
Some of the ports filtered by the firewall are: 20, 21, 22, 23, 25, 53, 80, 111, 135, 443.
QID: 45038
Category: Information gathering
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 09/15/2022
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
The Host Scan Time is the period of time it takes the scanning engine to perform the vulnerability assessment of a single target host. The Host Scan
Time for this host is reported in the Result section below.
The Host Scan Time does not have a direct correlation to the Duration time as displayed in the Report Summary section of a scan results report. The
Duration is the period of time it takes the service to perform a scan task. The Duration includes the time it takes the service to scan all hosts, which
may involve parallel scanning. It also includes the time it takes for a scanner appliance to pick up the scan task and transfer the results back to the
service's Secure Operating Center. Further, when a scan task is distributed across multiple scanners, the Duration includes the time it takes to perform
parallel host scanning on all scanners.
IMPACT:
N/A
SOLUTION:
N/A
COMPLIANCE:
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
QID: 82056
Category: TCP/IP
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 10/07/2004
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
Attempts to obtain the fully-qualified domain name (FQDN) or the Netbios name failed for this host.
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
No results available
192.168.90.2 (-, -)
QID: 6
Category: Information gathering
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 01/04/2018
User Modified: -
Edited: No
THREAT:
The fully qualified domain name of this host, if it was obtained from a DNS server, is displayed in the RESULT section.
IMPACT:
N/A
SOLUTION:
N/A
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
IP address Host name
192.168.90.2 No registered hostname
1 Firewall Detected
QID: 34011
Category: Firewall
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 04/21/2019
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
A packet filtering device protecting this IP was detected. This is likely to be a firewall or a router using access control lists (ACLs).
IMPACT:
N/A
SOLUTION:
N/A
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
Some of the ports filtered by the firewall are: 20, 21, 22, 23, 25, 53, 80, 111, 135, 443.
QID: 45038
Category: Information gathering
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 09/15/2022
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
The Host Scan Time is the period of time it takes the scanning engine to perform the vulnerability assessment of a single target host. The Host Scan
Time for this host is reported in the Result section below.
The Host Scan Time does not have a direct correlation to the Duration time as displayed in the Report Summary section of a scan results report. The
Duration is the period of time it takes the service to perform a scan task. The Duration includes the time it takes the service to scan all hosts, which
may involve parallel scanning. It also includes the time it takes for a scanner appliance to pick up the scan task and transfer the results back to the
service's Secure Operating Center. Further, when a scan task is distributed across multiple scanners, the Duration includes the time it takes to perform
parallel host scanning on all scanners.
IMPACT:
N/A
SOLUTION:
N/A
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
QID: 82056
Category: TCP/IP
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 10/07/2004
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
Attempts to obtain the fully-qualified domain name (FQDN) or the Netbios name failed for this host.
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
No results available
192.168.90.8 (-, -)
QID: 6
Category: Information gathering
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 01/04/2018
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
The fully qualified domain name of this host, if it was obtained from a DNS server, is displayed in the RESULT section.
IMPACT:
N/A
SOLUTION:
N/A
COMPLIANCE:
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
IP address Host name
192.168.90.8 No registered hostname
1 Firewall Detected
QID: 34011
Category: Firewall
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 04/21/2019
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
A packet filtering device protecting this IP was detected. This is likely to be a firewall or a router using access control lists (ACLs).
IMPACT:
N/A
SOLUTION:
N/A
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
Some of the ports filtered by the firewall are: 20, 21, 22, 23, 25, 53, 80, 111, 135, 443.
QID: 45038
Category: Information gathering
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 09/15/2022
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
The Host Scan Time is the period of time it takes the scanning engine to perform the vulnerability assessment of a single target host. The Host Scan
Time for this host is reported in the Result section below.
The Host Scan Time does not have a direct correlation to the Duration time as displayed in the Report Summary section of a scan results report. The
Duration is the period of time it takes the service to perform a scan task. The Duration includes the time it takes the service to scan all hosts, which
may involve parallel scanning. It also includes the time it takes for a scanner appliance to pick up the scan task and transfer the results back to the
service's Secure Operating Center. Further, when a scan task is distributed across multiple scanners, the Duration includes the time it takes to perform
parallel host scanning on all scanners.
IMPACT:
N/A
SOLUTION:
N/A
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
QID: 82056
Category: TCP/IP
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 10/07/2004
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
No results available
192.168.90.9 (-, -)
QID: 6
Category: Information gathering
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 01/04/2018
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
The fully qualified domain name of this host, if it was obtained from a DNS server, is displayed in the RESULT section.
IMPACT:
N/A
SOLUTION:
N/A
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
IP address Host name
192.168.90.9 No registered hostname
1 Firewall Detected
THREAT:
A packet filtering device protecting this IP was detected. This is likely to be a firewall or a router using access control lists (ACLs).
IMPACT:
N/A
SOLUTION:
N/A
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
Some of the ports filtered by the firewall are: 20, 21, 22, 23, 25, 53, 80, 111, 135, 443.
QID: 45038
Category: Information gathering
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 09/15/2022
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
IMPACT:
N/A
SOLUTION:
N/A
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
QID: 82056
Category: TCP/IP
Associated CVEs: -
Vendor Reference: -
Bugtraq ID: -
Service Modified: 10/07/2004
User Modified: -
Edited: No
PCI Vuln: No
THREAT:
Attempts to obtain the fully-qualified domain name (FQDN) or the Netbios name failed for this host.
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
ASSOCIATED MALWARE:
RESULTS:
No results available
Options Profile
Initial Options
Scan Settings
Ports:
Scanned TCP Ports: Standard Scan
Scanned UDP Ports: Standard Scan
Scan Dead Hosts: Off
Close Vulnerabilities on Dead Hosts Count: Off
Purge old host data when OS changes: Off
Load Balancer Detection: Off
Perform 3-way Handshake: Off
Vulnerability Detection: Complete
Intrusive Checks: Excluded
Excluded Search Lists: Network - Exceptions
Excluded QIDs: 11827 HTTP Security Header Not Detected
13607 Host is Vulnerable to Extended Master Secret TLS Extension (TLS
triple handshake)
38169 SSL Certificate - Self-Signed Certificate
38170 SSL Certificate - Subject Common Name Does Not Match Server FQDN
38171 SSL Certificate - Server Public Key Too Small
38172 SSL Certificate - Improper Usage Vulnerability
38173 SSL Certificate - Signature Verification Failed Vulnerability
38229 Service Stopped Responding
38304 SSH Protocol Version 1 Supported
38433 SIP UDP Transport Supported
38523 SSH Weak Cipher Used
38598 Deprecated Public Key Length
38601 Secure Sockets Layer/Transport Layer Security (SSL/TLS) Use of
Weak Cipher Rivest Cipher 4 (RC4/ARC4/ARCFOUR)
38628 Secure Sockets Layer/Transport Layer Security (SSL/TLS) Server
supports Transport Layer Security (TLSv1.0)
38655 X.509 Certificate SHA1 Signature Collision Vulnerability
38657 Birthday attacks against TLS ciphers with 64bit block size
vulnerability (Sweet32)
38666 SNMP GETBULK Reflected Distributed Denial Of Service (DoS)
Vulnerability
38670 Dropbear SSH Multiple Security Vulnerabilities
38685 SSL Certificate - Invalid Maximum Validity Date Detected
38738 SSH Server Public Key Too Small
38739 Deprecated SSH Cryptographic Settings
38794 Secure Sockets Layer/Transport Layer Security (SSL/TLS) Server
Supports Transport Layer Security (TLSv1.1)
38863 Weak SSL/TLS Key Exchange
38909 SHA1 deprecated setting for SSH
42366 SSLv3.0/TLSv1.0 Protocol Weak CBC Mode Server Side Vulnerability
(BEAST)
42395 Encrypted Management Interfaces Accessible On Cisco Device
45242 Remote Management Service Accepting Unencrypted Credentials
Detected(HTTP)
48168 Remote Management Service Accepting Unencrypted Credentials
Detected (Telnet)
78031 Writeable SNMP Information
82024 UDP Constant IP Identification Field Fingerprinting Vulnerability
82054 TCP Sequence Number Approximation Based Denial of Service
105459 EOL/Obsolete Software: SNMP Protocol Version 1/2c Detected
316187 Cisco Adaptive Security Appliance Remote Code Execution and
Denial of Service Vulnerability (cisco-sa-20180129-asa1)
Advanced Settings
Host Discovery: TCP Standard Scan, UDP Standard Scan, ICMP On
Ignore firewall-generated TCP RST packets: Off
Ignore all TCP RST packets: Off
Ignore firewall-generated TCP SYN-ACK packets: Off
Do not send TCP ACK or SYN-ACK packets during host discovery: Off
Report Legend
Vulnerability Levels
A Vulnerability is a design flaw or mis-configuration which makes your network (or a host on your network) susceptible to malicious attacks from local or
remote users. Vulnerabilities can exist in several areas of your network, such as in your firewalls, FTP servers, Web servers, operating systems or CGI bins.
Depending on the level of the security risk, the successful exploitation of a vulnerability can vary from the disclosure of information about the host to a
complete compromise of the host.
1 Minimal Intruders can collect information about the host (open ports, services, etc.) and may be
able to use this information to find other vulnerabilities.
2 Medium Intruders may be able to collect sensitive information from the host, such as the
precise version of software installed. With this information, intruders can easily
exploit known vulnerabilities specific to software versions.
3 Serious Intruders may be able to gain access to specific information stored on the host,
including security settings. This could result in potential misuse of the host by
intruders. For example, vulnerabilities at this level may include partial disclosure of
file contents, access to certain files on the host, directory browsing, disclosure of
filtering rules and security mechanisms, denial of service attacks, and unauthorized use
of services, such as mail-relaying.
4 Critical Intruders can possibly gain control of the host, or there may be potential leakage of
highly sensitive information. For example, vulnerabilities at this level may include
full read access to files, potential backdoors, or a listing of all the users on the
host.
5 Urgent Intruders can easily gain control of the host, which can lead to the compromise of your
entire network security. For example, vulnerabilities at this level may include full
read and write access to files, remote execution of commands, and the presence of
backdoors.
A potential vulnerability is one which we cannot confirm exists. The only way to verify the existence of such vulnerabilities on your network would be to perform
an intrusive scan, which could result in a denial of service. This is strictly against our policy. Instead, we urge you to investigate these potential
vulnerabilities further.
1 Minimal If this vulnerability exists on your system, intruders can collect information about the
host (open ports, services, etc.) and may be able to use this information to find other
vulnerabilities.
2 Medium If this vulnerability exists on your system, intruders may be able to collect sensitive
information from the host, such as the precise version of software installed. With this
information, intruders can easily exploit known vulnerabilities specific to software
versions.
3 Serious If this vulnerability exists on your system, intruders may be able to gain access to
specific information stored on the host, including security settings. This could result
in potential misuse of the host by intruders. For example, vulnerabilities at this level
may include partial disclosure of file contents, access to certain files on the host,
directory browsing, disclosure of filtering rules and security mechanisms, denial of
service attacks, and unauthorized use of services, such as mail-relaying.
4 Critical If this vulnerability exists on your system, intruders can possibly gain control of the
host, or there may be potential leakage of highly sensitive information. For example,
vulnerabilities at this level may include full read access to files, potential backdoors, or a listing of all the users on the host.
5 Urgent If this vulnerability exists on your system, intruders can easily gain control of the
host, which can lead to the compromise of your entire network security. For example,
vulnerabilities at this level may include full read and write access to files, remote
execution of commands, and the presence of backdoors.
Information Gathered
Information Gathered includes visible information about the network related to the host, such as traceroute information, Internet Service Provider (ISP), or a
list of reachable hosts. Information Gathered severity levels also include Network Mapping data, such as detected firewalls, SMTP banners, or a list of open
TCP services.
1 Minimal Intruders may be able to retrieve sensitive information related to the host, such as
open UDP and TCP services lists, and detection of firewalls.
2 Medium Intruders may be able to determine the operating system running on the host, and view banner versions.
3 Serious Intruders may be able to detect highly sensitive data, such as global system user lists.