ID

18117

Nom

DameWare NT Utilities Authentication Credentials Persistence Weakness

Auteurs

This script is Copyright (C) 2005-2008 Tenable Network Security

Catégorie

Windows

Action

infos

Résumé

Checks for authentication credentials persistence weakness in DameWare NT Utilities

Description

Synopsis : The remote Windows host contains an application that is affected by an information disclosure issue. Description : According to its version number, the copy of DameWare NT Utilities installed on the remote host allows a local user to recover authentication credentials because it stores sensitive information such as username, password, remote user, and remote hostname in memory as plain text. See also : http://www.shellsec.net/leer_advisory.php?id=7 http://archives.neohapsis.com/archives/bugtraq/2005-04/0225.html http://www.dameware.com/support/security/bulletin.asp?ID=SB5 Solution : Upgrade to DameWare NT Utilities 3.80 / 4.9 or later. Risk factor : Low / CVSS Base Score : 2.1 (CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:N)

SeaMonkey < 1.1.12
Opera web browser file download extension spoofing
Norton Anti Virus Check
BIOS version (SMB)
Rhapsody vidplin.dll AVI Processing Heap Overflow Vulnerability
VMware Server Detection (Windows)
Opera JavaScript Denial of Service
Trillian < 3.1.5.1 Multiple Vulnerabilities
Google Secure Access VPN Client Installed
I-Nav ActiveX Buffer Overflow Vulnerability
Firefox < 2.0.0.6
Akamai Red Swoosh < 3333 Cross-Site Request Forgery Vulnerability
Songbird Detection
SNMPc Management Server Login Packet Denial of Service Vulnerability
Prevx Pro 2005 <= 1.0.0.1 Multiple Vulnerabilities
Vulnerability in Windows Could Allow Information Disclosure (888302) (network check)
VMware Workstation < 5.5.5 and Server < 1.0.4 Multiple Vulnerabilities
CuteFTP < 5.0.2.0 multiple flaws
SmartFTP Overflow
Cygwin < 1.5.24 cygwin1.dll Crafted Filename Handling Overflow
Winamp < 5.13 Multiple Buffer Overflow Vulnerabilities
RealPlayer ActiveX Control Heap Memory Corruption Vulnerabilities
Firefox < 1.5.0.2
NetVault Report Manager Scheduler Buffer Overflow Vulnerability
SMB log in as users
ASN.1 Parsing Vulnerabilities (NTLM check)
Opera < 9.20 Multiple Vulnerabilities
Vulnerability in SMB Could Allow Remote Code Execution (896422) - Network Check
Winamp Malformed Midi File Buffer Overflow Vulnerability (2)
PowerArchiver paiso.dll Buffer Overflow Vulnerability
OpenOffice < 2.4 Multiple Vulnerabilities
ER Mapper NCSView ActiveX Buffer Overflow Vulnerabilities
Facebook Photo Uploader ActiveX Control < 4.5.57.1 Buffer Overflow Vulnerabilities
Opera < 9.62 Multiple Vulnerabilities
CRYPTO-Server installvariables.properties LDAP Credential Local Disclosure
Akamai Download Manager ActiveX Control < 2.2.1.0 Multiple Vulnerabilities
VERITAS Backup Exec Agent Browser Remote Buffer Overflow Vulnerability
Novell iPrint Client Buffer Overflow Vulnerability
Netscape Browser <= 8.0.3.3
SMB Registry : Classic Logon Screen
RealPlayer PNG deflate heap corruption
PacketTrap pt360 TFTP Server < 1.0.3302.0 Multiple Vulnerabilities
Yahoo! Messenger < 8.1.0.416 Multiple Vulnerabilities
Netscape < 9.0.0.4
Drag And Zip Overflow
SMB NativeLanMan
Safari < 3.1.2 Multiple Vulnerabilities
Bonjour < 1.0.5 Multiple Vulnerabilities APPLE-SA-2009-09-09 (Windows)
Google Desktop detection
DriveLock DriveLock.exe HTTP Request Processing Remote Overflow
Mozilla Thunderbird < 1.5.0.5
FREE COMMUNITY detection
Office Viewer Component Insecure HttpDownloadFile Method Vulnerability
Symantec Mail Security for Domino Mail Relay Vulnerability
Firefox < 1.0.2
Novell iPrint Client Unspecified Vulnerability
Mozilla Thunderbird < 1.5.0.13 / 2.0.0.6
BARGAINBUDDY detection
LogMeIn Agent Detection
QuickTime < 7.1.5 (Windows)
SonicWall NetExtender NELaunchCtrl ActiveX Control Buffer Overflow Vulnerabilities
Trend Micro OfficeScan cgiRecvFile.exe Buffer Overflow Vulnerability
Trillian Detection
Novell Client nwspool.dll Buffer Overflow Vulnerability
Kaspersky kl1.sys Driver Buffer Overflow Vulnerability
OpenOffice < 2.2 Multiple Vulnerabilities
FlashPlayer files reading
Foxit Reader < 2.3 Build 2912 util.printf() Function PDF File Handling Overflow
F-Secure ZIP/RAR Archive Handling Overflow Vulnerabilities
BRILLIANT DIGITAL detection
DOWNLOADWARE detection
Sun Java Runtime Environment XML Signature Command Injection Vulnerability (102993)
Sophos Anti-Virus UPX and BZIP File Multiple Vulnerabilities
GdPicture Multiple ActiveX Control SaveAsPDF Method Arbitrary File Overwrite
SeaMonkey < 1.0.8
Skype Networking Routine Heap Overflow Vulnerability (SMB check)
SMB Registry : XP Service Pack version
Vulnerability in MSMQ Could Allow Code Execution (Network Check)
Microsoft Windows Remote Desktop Protocol Server Private Key Disclosure Vulnerability
Firefox < 2.0.0.10
Firefox < 2.0.0.18
LPViewer ActiveX Control Multiple Buffer Overflow Vulnerabilities
Nessus ScanCtrl ActiveX File Deletion Vulnerability
BONZI BUDDY detection
Windows Messenger is installed
FlipViewer ActiveX Control < 4.1 Buffer Overflow Vulnerabilities
WILDTANGENT detection
Sophos PureMessage < 3.0.2 Multiple Vulnerabilities
Citrix redirection bug
QuickTime Detection
Flash Player Detection
Vulnerability in Windows Active Directory Could Allow Remote Code Execution (926122) - Network Check
Multiple flaws in the Opera web browser (2)
LANDesk QIP Server Service heal Request Buffer Overflow Vulnerability
EPolicy Orchestrator SiteManager ActiveX Control Buffer Overflow Vulnerabilities
DSSAGENT detection
Google Desktop Cross-Site Scripting Flaw
QuickTime < 7.4.5 (Windows)
WEBHANCER detection
QuickTime RTSP URL Handler Buffer Overflow Vulnerability (Windows)
Timbuktu Pro < 8.6.5 Multiple Vulnerabilities
Intuit QuickBooks Online Edition < 10 ActiveX Multiple Vulnerabilities
WINS Code Execution (870763) (network check)
SeaMonkey < 1.0.7
CA Secure Content Manager HTTP Gateway Service FTP Vulnerabilities
Opera < 9.22 Multiple Vulnerabilities
ICUII Detection
Sun Java Web Start Arbitrary File Overwrite Vulnerability (102957)
F-Secure Anti-Virus for Windows system32 Directory Crafted File Detection Bypass
SMB Registry : value of SFCDisable
Opera < 9.00 Multiple Vulnerabilities
SMB shares access
Mozilla Thunderbird < 2.0.0.17
Intel PRO/Wireless Network Connection Drivers Remote Code Execution Vulnerabilities
Opera Empty Embedded Object DoS
iTunes < 8.0 Integer Buffer Overflow Vulnerability (Network Check)
Blac'oon FTP stores passwords in cleartext
Cisco Security Agent for Microsoft Windows Crafted SMB Packet Remote Overflow
Intel PRO/Wireless 2100 Network Connection Driver Local Privilege Escalation Vulnerability
SMB Registry : permissions of the SNMP key
QuickTime < 7.0.4 (Windows)
AVIRA Desktop for Windows ACE Archive Handling Buffer Overflow Vulnerability
Mercury Quality Center ActiveX Control ProgColor Buffer Overflow Vulnerability
Vulnerability in Server Service Could Allow Remote Code Execution (958644) - Network check
SwiftView Viewer Plugin < 8.3.5 Buffer Overflow Vulnerability
Internet Explorer version check
VMware Workstation < 5.5.4 Build 44386 Multiple Vulnerabilities
SolidWorks Sldimdownload ActiveX Control Code Execution Vulnerability
DynaZip Zip Archive Handling Buffer Overflow Vulnerabilities
Ipswitch IMail Client Buffer Overflow Vulnerability
SMB Registry : permissions of Schedule
FileZilla Server < 0.9.22 Denial of Service Vulnerabilities
Novell Client Buffer Overflow
NOD32 Run-Time Decompressors Multiple Vulnerabilities
SeaMonkey < 1.0.5
RealPlayer Playlist Handling Buffer Overflow Vulnerability
Mozilla/Thunderbird multiple flaws
Yahoo! Messenger ActiveX Control Buffer Overflow Vulnerability
Vulnerability in Message Queuing Could Allow Remote Code Execution (937894) (Network check)
CesarFTP stores passwords in cleartext
SonicWall Global VPN Client Detection
SMB Registry : permissions of HKLM
avast! CAB and SIS File Handling Buffer Overflow Vulnerabilities
Vulnerabilities in DHCP (885249) (network check)
Sun Java Runtime Environment Image Parsing Vulnerabilities (102934)
Opera < 9.60 Multiple Vulnerabilities
Symantec Anti Virus Corporate Edition Check
Multiple ICQ Vulnerabilities
Opera < 9.61 Multiple Vulnerabilities
Adobe AIR Detection
TIMESINK detection
Pidgin Detection (Windows)
Vulnerabilities in MSDTC Could Allow Remote Code Execution (902400) - Network check
DrWeb Unspecified buffer overflow
Husdawg System Requirements Lab ActiveX Remote Code Execution Vulnerability
CYDOOR detection
NOD32 Antivirus System Check
CA eTrust Antivirus WebScan ActiveX Control Vulnerabilities
Citrix Presentation Server Clients Program Neighborhood Agent (PNAgent) Content Redirection Remote DoS
Opera < 9.10 Multiple Vulnerabilities
Opera < 9.52 Multiple Vulnerabilities
Panda Antivirus Check
FortiClient Host Security fortimon.sys Crafted Request Local Privilege Escalation
Flash Player APSB06-11
Macrovision InstallShield InstallScript One-Click Install Untrusted Library Loading Vulnerability
First Response < 1.1.1 Multiple Vulnerabilities
OpenOffice Detection
Vulnerability in SAVCE could allow Local Privilege Escalation (SYM07-017)
Vulnerability in Server Service Could Allow Remote Code Execution (917159) - Network check
Anzio Web Print Object (WePO) ActiveX mainurl Variable Buffer Overflow
VMware Products Multiple Vulnerabilities (VMSA-2008-0009)
Sun Java Runtime Environment External XML Entities Vulnerability (231246)
Lenovo Rescue and Recovery tvtumon.sys Heap Overflow Vulnerability
Flash Player APSB06-03
AUREATE detection
Sony ImageStation AxRUploadControl ActiveX Control Buffer Overflow Vulnerability
InstallFromTheWeb ActiveX Control Buffer Overflow Vulnerabilities
Vulnerability NetDDE Could Allow Code Execution (Netbios Check)
Macrovision FLEXnet DWUpdateService ActiveX (agent.exe) Multiple Method Arbitrary Command Execution
SMB use host SID to enumerate local users
Possible Compromise through a vulnerability in RPC
QuickTime < 7.3 (Windows)
Opera web browser HREF overflow
AVG Anti-Virus Crafted UPX File Handling Divide-by-zero Remote DoS
NOD32 Antivirus Local File Creation Vulnerability
OpenOffice RTF Parser Buffer Overflow Vulnerability
Akamai Download Manager ActiveX Control < 2.2.3.6 Arbitrary File Download
Opera < 9.26 Multiple Vulnerabilities
Wireshark / Ethereal < 1.0.3 Multiple Vulnerabilities
FileZilla FTP Client Unspecified Overflow
SiteKiosk < 6.5.150 Multiple Vulnerabilities
Trend Micro UPX file parsing flaw detection
Detect the HTTP RPC endpoint mapper
DameWare Mini Remote Control Server Unspecified Privilege Escalation Vulnerability
Novell Client ndppnt.dll Vulnerability
Novell Client nwspool.dll Buffer Overflow Vulnerabilities (bug 300870)
Novell ZENworks ESM Security Client STEngine Privilege Escalation Vulnerability
Opera < 8.02 Multiple Vulnerabilities
MySpace Uploader ActiveX Control < 1.0.0.6 Buffer Overflow Vulnerability
Aurigma Image Uploader ActiveX Control < 4.5.70 Buffer Overflow Vulnerabilities
Winamp3 buffer overflows
Adobe Reader < 8.1.1
Learn2 STRunner ActiveX Control Multiple Buffer Overflow Vulnerabilities
SMB share files enumerated
Deterministic Network Extender dne2000.sys Local Privilege Escalation
Trillian < 3.1.10.0 Multiple Vulnerabilities
FlashFXP Overflow
Nullsoft Winamp Multiple Unspecified Vulnerabilities
Kaspersky Antivirus IOCTL Local Privilege Escalation Vulnerability
WINS Buffer Overflow (830352 - netbios check)
QuickTime PictureViewer Buffer Overflow
Mozilla Thunderbird < 2.0.0.5
SeaMonkey < 1.1.9
Firefox < 1.0.7
Buffer Overrun in Messenger Service (real test)
Vulnerability in Routing and Remote Access Could Allow Remote Code Execution (911280) - Network check
IBM eGatherer ActiveX RunEgatherer Function Overflow
DameWare Mini Remote Control Authentication Credentials Persistence Weakness
FileZilla < 2.2.30a Buffer Overflow Vulnerabilities
Mozilla Thunderbird < 1.0.2
CA Multiple Products inoweb Console Server Authentication Remote Overflow
Vulnerabilities in ASP.NET could allow information disclosure (922770) (network check)
The messenger service is running
Sun Java JDK/JRE 6 < Update 7 Multiple Vulnerabilities
Vulnerability in Host Integration Server RPC Service Could Allow Remote Code Execution (956695) - Network check
MAPQUEST TOOLBAR detection
SeaMonkey < 1.0.2
WinZip 11.x gdiplus.dll Unspecified Vulnerability
3ivx MPEG-4 < 5.0.2 Buffer Overflow
Opera Detection
SMB get host SID
Mozilla Browser < 1.7.7
AOL Radio AmpX ActiveX Control Buffer Overflow Vulnerabilities
Google Chrome < 0.3.154.9 Address Spoofing
pcAnywhere TCP
Adobe Download Manager Detection
Opera web browser address bar spoofing weakness
mIRC PRIVMSG Remote Buffer Overflow Vulnerability
Firefox < 2.0.0.7
Sun Java Runtime Environment Privilege Escalation Vulnerability (231261)
SMB use domain SID to enumerate users
Mozilla Thunderbird < 1.0.6
WinPcap NPF.SYS bpf_filter_init Arbitrary Array Indexing Vulnerability
SeaMonkey < 1.0.6
Mozilla Browser < 1.7.9
SAPlpd < 6.29 Multiple Vulnerabilities (local check)
Firefox < 2.0.0.13
Sun Java Runtime Environment GIF Image Buffer Overflow Vulnerability (102760)
SMB get domain SID
Novell SecureLogin < 6.0.106 Multiple Vulnerabilities
Plaxo Client Is Installed
Opera relative path directory traversal file corruption vulnerability
RealPlayer for Windows < Build 6.0.12.1483
SAHAGENT detection
Symantec Backup Exec for Windows Servers Denial of Service Vulnerabilities
GroupWise Messenger Client < 2.0.3 HP1 Multiple Remote Overflow Vulnerabilities (OF, DoS)
3D-FTP Multiple Directory Traversal Vulnerabilities
Cisco VPN Client Version Detection
Computer Associates Vet Library Remote Heap Overflow Vulnerability
Novell exteNd Director LocalExec ActiveX Dangerous Method Vulnerability
scan for UPNP/Tcp hosts
F-PROT Antivirus Engine < 4.4.4 Multiple File Handling DoS Vulnerabilities
Vulnerability in Printer Spooler Service Could Allow Remote Code Execution (896423) - Network Check
Mozilla Thunderbird < 1.5.0.14
HP Instant Support SDD ActiveX Buffer Overflow Vulnerability
BlackBerry Attachment Service PDF Processing Vulnerability (Remote Check)
Ipswitch IM Server < 2.07 Denial of Service Vulnerability
Firefox < 1.5.0.5
Firefox < 1.5.0.11 / 2.0.0.3
Opera web browser address bar spoofing weakness (2)
Altiris Deployment Solution Agent < 6.9.176 Multiple Local Vulnerabilities
SMB log in
LANDesk Management Suite Alert Service Stack Overflow Vulnerability
Firefox < 1.5.0.7
PuTTY Multiple Integer Overflow Vulnerablities
Netsky.B
Sun Java Web Start JNLP Overflow Vulnerability (102996)
Yahoo! Messenger Webcam ActiveX Buffer Overflow Vulnerabilities
Sun Java J2SE 1.4.2 < Update 18 Multiple Vulnerabilities
WinRAR LHA Filename Handling Buffer Overflow Vulnerabilities
Corel ActiveCGM ActiveX Buffer Overflow Vulnerabilities
Yahoo! Messenger AudioConf ActiveX Control Buffer Overflow Vulnerability
SMB guest account for all users
DrWeb Folder Name Overflow
Vulnerability in Message Queuing Could Allow Remote Code Execution (951071) - Network check
Altiris Notification Server Agent GUI Local Privilege Escalation (KB 39159)
QuickTime player/plug-in Heap overflow
Mozilla Browser < 1.7.6
Trend Micro OfficeScan HTTP Request Buffer Overflow Vulnerability
Windows Live OneCare AntiVirus Check
McAfee Common Management Agent 3.6.0 Format String Vulnerability (registry check)
Firefox < 2.0.0.17
Retrospect Backup Server Password Hash Vulnerability (ESA-08-009)
Kaspersky Antivirus UPX File Decompression Denial of Service Vulnerability
Cisco VPN Client on Windows Dial-up Networking Dialog Local Privilege Escalation
Microsoft Shlwapi.dll Malformed HTML form tag DoS
Netscape Browser No Longer Supported
Sun Java Media Framework (JMF) Vulnerability
Camtasia Studio Pre-generated SWF File csPreloader Variable Unspecified Arbitrary Code Execution
iTunes For Windows Local Code Execution Vulnerability (registry check)
DameWare NT Utilities Authentication Credentials Persistence Weakness
Microsoft Hotfix KB828741 (network check)
Panda AdminSecure Communications Agent < 4.2 Heap Overflow Vulnerability
QuickTime player buffer overflow
VLC Media Player < 0.9.3 XSPF Playlist Memory Corruption Vulnerability
Putty Modpow integer handling
VLC Media Player 0.5.0 to 0.9.5 Stack-Based Buffer Overflows
McAfee ePolicy Orchestrator HTTP Server Remote Buffer Overflow Vulnerability
Outlook Express Multiple Vulnerabilities (900930)
Web3000 detection
Novell GroupWise Windows Client Arbitrary Email Access
Multiple Overflows in WS_FTP client
SMB NULL session
Sun JRE Java Plug-in JavaScript Security Restriction Bypass
Flash Player APSB07-12
OpenOffice 2.x < 2.4.2 WMF and EMF File Handling Buffer Overflows
Vulnerability in the Client Service for NetWare Could Allow Remote Code Execution (899589) - Network Check
Now SMS/MMS Gateway < 2008.02.22 Buffer Overflow Vulnerabilities
Zoomify Viewer ActiveX Buffer Overflow Vulnerabilities
Ask.com Toolbar AskJeevesToolBar.SettingsPlugin.1 ActiveX (askBar.dll) ShortFormat Property Arbitrary Code Execution
AIM Detection
Firefox < 2.0.0.16
7Zip < 4.57 Archive Handling Unspecified Issue
Adobe Reader < 8.1.3
AXIS Camera Control (aka CamImage) AxisCamControl.ocx ActiveX SaveBMP Method Overflow
DCE Services Enumeration
Trillian Multiple HTTP Responses Buffer Overflow Vulnerabilities
WebWasher Remote ARJ Decoder Denial of Service Vulnerability
Vulnerability in Plug and Play Could Allow Remote Code Execution and Local Elevation of Privilege (905749) - Network Check
McAfee Anti Virus Check
DjVu Browser Plug-in Multiple Buffer Overflow Vulnerabilities
The remote host is infected by a virus
MS NNTP Vulnerability (883935)
LOP.COM detection
Opera Resource Detection
Possible GDI+ compromise
XUpload ActiveX Control AddFolder Buffer Overflow Vulnerability
Symantec Mail Security for SMTP Arbitrary Code Execution Vulnerability
Opera web browser URI obfuscation
Mozilla/Firefox security manager certificate handling DoS
Acer LunchApp.APlunch Arbitrary Command Execution
Software Enumeration (via SMB)
McAfee E-Business Server Administration Client Length Denial of Service Vulnerability
Lotus Notes Client < 7.0.3 / 8.0.1 Buffer Overflow Vulnerabilities
Winamp < 5.35 Buffer Overflow Vulnerability
Realtek HD Audio Codec Drivers Multiple Local Privilege Escalation Vulnerabilities
Symantec Mail Security for SMTP File Parsing Vulnerabilities
Flash Player Improper Memory Access Vulnerabilities
Mozilla Thunderbird < 2.0.0.16
Opera < 7.22 Multiple Vulnerabilities
XnView RGBE Buffer Overflow Vulnerability
QuickTime < 7.4 (Windows)
VLC Media Player Detection
HP Software Update RulesEngine ActiveX Control Insecure Methods Vulnerability
Sophos Anti-Virus detection
FeedDemon < 2.0.0.25 Atom Feed Active Script Code Execution
Gracenote CDDBControl ActiveX Control Option String Overflow
Photo Upload Plugin Buffer Overflow Vulnerabilities
Default password (db2admin) for db2admin account on Windows
Mozilla Foundation Application Detection
FileZilla FTP Server MLSD Command Overflow
Opera < 8.50 Multiple Vulnerabilities
PuTTY SSH2 authentication password persistence weakness
Vulnerability in Web Client Service Could Allow Remote Code Execution (911927) - network check
QuickTime < 7.4.1 (Windows)
Opera Multiple Vulnerabilities (3)
SMB Registry : Windows 2003 Server SP2
Trillian aim:// URI Handler Vulnerabilities
Creative Software AutoUpdate Engine ActiveX (CTSUEng.ocx) Unspecified Overflow
HP OVIS Probe Builder Arbitrary Process Termination Vulnerability
Firefox 3.x < 3.0.1
Foxit Reader Detection
RealPlayer Detection
Unsupported version of Microsoft Exchange Server
SMB Registry : permissions of winlogon
ListManager with MSDE Weak sa Password Vulnerability
ARCserve hidden share
Gator/GAIN Spyware Installed
iTunes AAC File Integer Overflow Vulnerability (Windows)
Detect CIS ports
Cisco VPN Client Privilege Escalation Vulnerability
Winamp < 5.2 Multiple Vulnerabilities
Mozilla Thunderbird < 2.0.0.9
Sun xVM VirtualBox < 1.6.4 Privilege Escalation Vulnerability
Panda Security Cpoint.sys Kernel Memory Corruption Vulnerability
Nessus Windows GUI Cross-Site Scripting Vulnerability
Akamai Download Manager ActiveX Control < 2.2.3.5 Remote Code Execution
Firefox < 1.5.0.3
WinPcap NPF.SYS Local Privilege Escalation Vulnerability
RealPlayer for Windows < Build 6.0.14.806 / 6.0.12.1675
Novell Client nwfs.sys Privilege Escalation Vulnerability
Anti Virus Check
Adobe Acrobat < 6.0.5
Nessus Windows Scan not performed with admin privileges
Mozilla Thunderbird < 1.5.0.10
Trillian < 3.1.6.0 Multiple Vulnerabilities
RealPlayer File Handler Code Execution
Oracle JInitiator beans.ocx ActiveX Buffer Overflow Vulnerabilities
Mozilla Thunderbird < 2.0.0.12
CuteFTP multiple flaws (2)
WinGate Invalid SMTP State Denial of Service Vulnerability
AIM Buddy Icon Overflow Vulnerability
Opera < 9.50 Multiple Vulnerabilities
Mozilla Thunderbird < 1.5.0.7
Firefox < 1.5.0.10 / 2.0.0.2
QuickTime < 7.5.5 (Windows)
iTunes < 8.0 (Windows)
SMB Registry : permissions of the RAS key
Altiris Notification Server Agent Local Privilege Escalation Vulnerabilities
SeaMonkey < 1.1.4
QuickTime < 7.3.1 (Windows)
SMB LanMan Pipe Server browse listing
Firefox < 1.5.0.12 / 2.0.0.4
DBTools DBManager Information Disclosure
Mozilla Thunderbird < 1.5.0.9
SMB OpenEventLog() over \srvsvc
SeaMonkey < 1.0
Novell Client nicm.sys Local Privilege Escalation Vulnerability
RealVNC VNC Viewer CMsgReader::readRect Command Execution Vulnerability
SeaMonkey < 1.0.1
Mozilla Browser < 1.7.8
Symantec Backup Exec Multiple Heap Overflow Vulnerabilities
Yahoo! Messenger Detection
SMB Registry : missing winreg
SMB Detection
Trillian remote Overflow
XCP DRM Software Detection
Nullsoft Winamp Filename Handler Local Buffer Overrun
MusicMatch Multiple Vulnerabilities
Wireshark / Ethereal Detection (Windows)
SecureCRT SSH1 protocol version string overflow
AIM Smiley Icon Location Denial Of Service Vulnerability
ZipCentral Buffer Overflow Vulnerability
Altiris Deployment Solution < 6.9.176 Multiple Vulnerabilities (SQLi, Auth Bypass, Priv Esc)
DESlock+ < 3.2.7 Multiple Local Vulnerabilities
Van Dyke SecureCRT Remote Command Execution Vulnerability
eScan < 9.0.718.1 MicroWorld Agent service (MWAGENT.EXE) Command Decryption Overflow
HP Virtual Rooms WebHPVCInstall.HPVirtualRooms14 ActiveX Control Buffer Overflow Vulnerabilities
Trend Micro OfficeScan Multiple CGI Module Vulnerabilities
RealPlayer for Windows < Build 6.0.12.1578
Altiris AClient < 6.9.164 Multiple Local Vulnerabilities
VMware Remote Arbitrary Code Execution Vulnerability
WS_FTP client weak stored password
Sun Java Runtime Environment DoS
Firefox < 2.0.0.14
SMB Registry : is the remote host a PDC/BDC
Microsoft Windows Domain Name Server Service Remote Procedure Call Interface Vulnerability
Mozilla/Firefox code execution
Mozilla Browser Network News Transport Protocol Remote Heap Overflow Vulnerability
Mozilla Thunderbird < 1.5.0.12
Mozilla SOAPParameter Integer Overlow
Vulnerabilities in TCP/IP Could Allow Remote Code Execution (network check)
SMB Registry : Win2k Service Pack version
Mozilla Thunderbird < 1.5.0.8
Citrix Presentation Server Client Unspecified Remote Code Execution
Firefox < 1.0.6
Winamp Malformed ID3v2 Tag Buffer Overflow Vulnerability
Notepad++ Ruby Source File Overflow Vulnerability
WinRAR < 3.71 Archive Handling Vulnerabilities
VLC Media Player < 0.8.6f Multiple Vulnerabilities
Adobe Contribute Publishing Server Administrator Password Disclosure
LeapFTP Overflow
Firefox < 2.0.0.12
iTunes Version Detection (Windows)
Winamp Malformed Midi File Buffer Overflow Vulnerability
Firefox 3.x < 3.0.2
Novell GroupWise Authentication Credentials MiTM Disclosure
Multiple flaws in the Opera web browser
Trend Micro Anti Virus Check
SMB Registry : permissions of keys that can change common paths
RIS Installation Check
SeaMonkey < 1.1.8
WebEx Meeting Manager WebexUCFObject ActiveX Control Buffer Overflow Vulnerability
Flash Player APSB08-11
WinSCP URL Protocol Handler Vulnerability
Hexamail POP3 Buffer Overflow Vulnerability (registry check)
IPINSIGHT detection
SMB enum services
ScriptLogic logging share
Microsoft Dynamics GP < 10.0 Multiple Vulnerabilities
Firefox < 2.0.0.8
avast! Server Edition LHA Archive Extended-header Field Processing Overflow
MobiLink Server < 10.0.1 build 3649 Buffer Overflow Vulnerability
Symantec Decomposer Multiple Vulnerabilities (SYM08-006)
Adobe Reader < 6.0.6 / 7.0.9
SMB Registry : SQL7 Patches
MailMarshal Tar File Directory Traversal Vulnerability
F-Secure Archive Handling Vulnerabilities (FSC-2008-2)
Winamp < 5.34 Multiple Vulnerabilities
Adobe Reader < 7.0.8
Sun Java Runtime Environment Multiple Vulnerabilities (233321-233327)
Firefox 3.x < 3.0.4
BitDefender Online Anti-Virus Scanner ActiveX OScan8.ocx / OScan8.ocx InitX Method Arbitrary Code Execution
Mozilla/Firefox default installation file permission flaw
Winamp < 5.541 NowPlaying Cross-Site Scripting Vulnerability
NOD32 Antivirus ARJ Archive Handling Buffer Overflow Vulnerability
avast! Antivirus Server Edition Password Setting Weakness
Opera web browser large javaScript array handling vulnerability
Novell iPrint Client ActiveX Control Multiple Vulnerabilities
Potentially unwanted software
Panda Antivirus EXE File Parsing Overflow Vulnerability
ThinkVantage System Update < 3.14 SSL Certificate Issuer Spoofing Vulnerability
Stunnel < 4.23 Local Privilege Escalation Vulnerability
NOD32 Long Path Name Stack Overflow Vulnerabilities
Opera web browser news url denial of service vulnerability
netOctopus Agent MSR Write Local Privilege Escalation Vulnerability
Computer Associates HIPS 'xfw.sys Multiple Remote Vulnerabilities
Safari < 3.1.1 Multiple Vulnerabilities
SeaMonkey < 1.1.13
OpenOffice.org < 2.0.3
SMB accessible registry
Winamp < 5.52 Ultravox Streaming Metadata Parsing Buffer Overflow Vulnerabilities
Kaspersky Antivirus PE File Denial of Service Vulnerability
Opera < 8.54 Multiple Vulnerabilities
Kaspersky Web Scanner ActiveX Format String Vulnerability
VeriSign ConfigChk ActiveX Control Buffer Overflow Vulnerability
FLEXnet Connect Update Service ActiveX Control Multiple Code Execution Vulnerabilities
Compromised Windows System (hosts file)
Firefox < 1.5.0.8
SMB Registry : Do not show the last user name
RoboHelp Server Help Errors Vulnerabilities (APSB08-16)
Google Chrome < 0.2.149.29 Multiple Vulnerabilities (OF, DoS)
Domino Web Access ActiveX Control Buffer Overflow Vulnerabilities
Microsoft Hotfix for KB835732 (SMB check)
Nullsoft Winamp .WSZ Overflow
eDirectory eMBox Utility Unauthorized Access
Trend Micro VSAPI ARJ Handling Heap Overflow
Netscape Browser Detection
Sun Java Runtime Environment Multiple Vulnerabilities (102729 and 102732)
Unsupported Windows 95/98/ME Installation
Firefox < 1.5.0.1
Trend Micro OfficeScan remote buffer overflow vulnerability
Trillian MSN Overflow
Rhapsody SWF Buffer Overflow Vulnerability
Vulnerability in Symantec AntiVirus could allow remote code execution (SYM06-010)
Symantec Mail Security for Microsoft Exchange Installed
Vulnerability in Server Service Could Allow Remote Code Execution (921883) - Network check
Trend Micro Scan Engine Tmxpflt.sys Buffer Overflow Vulnerability
Opera < 9.21 Buffer Overflow Vulnerability
VMware VIX API Multiple Buffer Overflow Vulnerabilities
Adobe Reader Detection
AntiVir File Handling Vulnerabilities
SMB Registry : Autologon
Sun Java Enterprise Server NSS Remote Code Execution Vulnerabilities
MS Task Scheduler vulnerability
Symantec Norton AntiVirus Version Detection
Spybot Search & Destroy Detection
wodSFTP ActiveX File Access Vulnerability
SMB Registry : NT4 Service Pack version
Sun Java Applet Invocation Version Specification
SMB shares enumeration
Microsoft Hotfix for KB835732 IIS SSL check
7-Zip ARJ File Handling Overflow
HP HPeDiag ActiveX Control Multiple Vulnerabilities (Code Exec, OF, ID)
NetBIOS Name Service Reply Information Leakage
QuickTime < 7.1 (Windows)
SeaMonkey < 1.0.3
SeaMonkey < 1.1.7
Kaspersky AV 6.0 Multiple Vulnerabilities
Yahoo! Messenger YVerInfo ActiveX Buffer Overflow Vulnerabilities
Opera < 9.23 Arbitrary Code Execution Vulnerability
PFTP clear-text passwords
Opera < 9.02 Multiple Vulnerabilities
Vulnerability in Microsoft Distributed Transaction Coordinator Could Allow Denial of Service (913580) - Network check
Opera remote heap corruption vulnerability
SeaMonkey < 1.1.3
Sun JRE Java Plugin-In Multiple Applet Vulnerabilities
SMB enum services over \srvsvc
Kaspersky Anti-Virus for Check Point FireWall-1 Denial of Service Vulnerability
Yahoo! Widgets YDP ActiveX Buffer Overflow Vulnerability
Symantec Mail Security for SMTP Executable Parsing Denial of Service Vulnerability
JS.Scob.Trojan or Download.Ject Trojan
QuickTime < 7.0.3 (Windows)
ASN.1 Parsing Vulnerabilities (HTTP check)
Nullsoft Winamp Remote Denial of Service
EasyMail Objects IMAP4 Component Connect Method Remote Overflow
Firefox < 1.5.0.4
Sophos Anti-Virus CAB, RAR and LZH Evasion Vulnerability
Yahoo! Music Jukebox ActiveX Controls Buffer Overflow Vulnerabilities
VMware Products Multiple Vulnerabilities (VMSA-2008-0014)
Google Chrome Detection (Windows)
BitDefender Client Log Creation Functionality Format String
pcAnywhere Launch with Windows Privilege Escalation Vulnerability
mIRC Detection
F-Secure Multiple Products Web Console Pre-authentication Overflow
VERITAS NetBackup Volume Manager Daemon Buffer Overflow Vulnerability
EasyMail SMTP Object ActiveX Control Buffer Overflow Vulnerabilities
VMware Workstation Detection
Firefox < 2.0.0.5
BitDefender Check
BETTERINTERNET detection
scan for UPNP hosts
VMware Player detection (Windows)
Using NetBIOS to retrieve information from a Windows host
Bagle remover
FTP Voyager Overflow
PGP Desktop PGPserv Arbitrary Code Execution Vulnerability
The ScriptLogic service is running
RealPlayer multiple remote overflows
Unsupported Windows NT 4.0 Installation
Office Viewer Component < 5.0 Multiple Vulnerabilities
Patchlink Detection
QuickTime < 7.1.3 (Windows)
Firefox Cache File
Macrovision SECDRV.SYS Local Privilege Escalation Vulnerability
Firefox < 1.0.1
SeaMonkey < 1.1.5
Firefox < 1.5.0.9 / 2.0.0.1
GATOR detection
Sun Java Runtime Environment Font Parsing Privilege Escalation Vulnerability (103024)
ProgramChecker sasatl.dll ActiveX Control Multiple Overflow Vulnerabilities
iTunes < 7.4 Malformed Music File Heap Overflow (Windows)
ICQ is installed
Google Toolbar HTML Injection Vulnerability
McAfee E-Business Server Authentication Packet Overflow Vulnerability
Gracenote CDDBControl ActiveX Proxy Configuration Parameters Multiple Overflows
SMB blank administrator password
WinGate Compressed Name Pointer Denial of Service Vulnerability
CA BrightStor ARCserve Backup ListCtrl ActiveX (ListCtrl.ocx) AddColumn() Method Overflow
3DGreetings Player ActiveX Buffer Overflow Vulnerabilities
ShockWave Player ActiveX Installer Buffer Overflow Vulnerability
Broadcom Wireless Driver (BCMWL5.SYS) Probe Response SSID Overflow
SMB Registry : No dial in
Sun Java Runtime Environment and Web Start Multiple Vulnerabilities (103072, 103073, 103078, 103079, 103112)
Flash Player APSB08-18 / APSB08-20 / APSB08-22
Flash Player APSB07-20
VMware Products Multiple Vulnerabilities (VMSA-2008-0005)
Winamp < 5.31 Multiple Buffer Overflow Vulnerabilities
Safari Detection (Windows)
Microsoft RPC Interface Buffer Overrun (KB824146) (network check)
SeaMonkey < 1.1.10
VMware Products Multiple Vulnerabilities (VMSA-2008-0008)
Firefox < 2.0.0.15
Rhapsody Detection
Symantec Backup Exec Calendar ActiveX Control Multiple Vulnerabilities (SYM08-007)
HP Instant Support HPISDataManager.dll ActiveX Control < 1.0.0.24 Vulnerabilities
Firefox < 1.0.8
Sun JRE Java Plug-in JavaScript Security Restriction Bypass (2)
Altiris Deployment Solution Aclient Process (aclient.exe) Log File Viewer Local Privilege Escalation
Winamp < 5.5 FLAC Plug-in Multiple Buffer Overflow Vulnerabilities
IBM AFP Viewer Plug-in SRC Property Buffer Overflow Vulnerability
OpenOffice < 2.4.1 rtl_allocateMemory Integer Overflow Vulnerability
Security issues in the remote version of FlashPlayer
Gupta SQLBase EXECUTE buffer overflow
Trillian < 3.1.5.1 XMPP Decoding Heap Overflow Vulnerability
WebEx Downloader ActiveX Control Injection Vulnerability
Vulnerability in Plug and Play Service Could Allow Remote Code Execution (899588) - Network Check
Firefox < 1.0.3
FileZilla < 2.2.32 Format String Vulnerabilities
Opera skin zip file buffer overflow vulnerability
RADIATE detection
QuickTime < 7.2 Security Update (Windows)
GEAR Software CD DVD Filter Driver Insecure Method Vulnerability
NOD32 File Processing Vulnerabilities
SMB Registry : permissions of the Microsoft Transaction Server key
Mozilla/Firefox user interface spoofing
SeaMonkey < 1.0.9 / 1.1.2
EDraw Office Viewer Component HttpDownloadFileToTempDir Method Buffer Overflow Vulnerability
Opera < 9.51 Multiple Vulnerabilities
AVG Anti-virus avg7core.sys 0x5348E004 IOCTL Local Privilege Escalation
Adobe Reader < 8.1.2 / 7.1.0
Novell Client User Profile Access Vulnerability
Firefox IMG Tag Multiple Vulnerabilities
Adobe AcroPDF ActiveX Control Multiple Vulnerabilities
Vulnerabilities in .NET Framework Could Allow Remote Code Execution (931212) (Network Check)
VMware ACE detection (Windows)
IMesh ActiveX Control SetHandler Method Command Execution Vulnerability
Opera < 9.27 Multiple Vulnerabilities
Flash Player APSB06-18
VCATCH detection
Microsoft RPC Interface Buffer Overrun (823980)
Firefox Downloaded Files Removal
NCASE detection
Adobe PDF Plug-In < 8.0 / 7.0.9 / 6.0.6
hMailServer < 4.4.2 build 279 Remote Denial of Service Vulnerability
ISS BlackICE Vulnerable versions
Mozilla Thunderbird < 1.0.7
The alerter service is running
SMB Windows9x password verification vulnerability
AxWebRemoveCtrl ActiveX Control Arbitrary Code Execution
SMB fully accessible registry
OpenOffice < 2.3 TIFF Parser Buffer Overflow Vulnerabilities
SeaMonkey < 1.1.11
Webroot SpySweeper Enterprise Check
Trend Micro Multiple Products Security Bypass Vulnerability
IRCXPro Clear Text Passwords
BlackBerry Multiple Products PDF Distiller Component PDF Processing Arbitrary Code Execution
RealPlayer / RealOne Player for Windows Multiple Vulnerabilities
Compression Plus CP5DLL32.DLL ZOO Archive Header Processing Overflow
NetSupport Manager Remote Authentication Bypass Vulnerability
Mozilla/Firefox multiple flaws
QuickTime < 7.2 (Windows)
WinSCP URI Handler File Access Vulnerability
SNMPc < 7.1.1 Buffer Overflow Vulnerability
AOL Instant Messenger is Installed
QuickTime < 7.1.6 Security Update (Windows)
Opera remote location object cross-domain scripting vulnerability
Mozilla Thunderbird < 1.5
PhatBOT detection
PuTTY window title escape character arbitrary command execution
SMB registry can not be accessed by the scanner
Sun Java Runtime Environment jpiexp32.dll Denial of Service Vulnerability
Adobe AIR APSB08-23 / APSB08-22 / APSB08-20 / APSB08-18
RealPlayer Skin File Remote Buffer Overflow
Sun Java Runtime Environment Detection
Firefox < 1.0.4
VLC Media Player < 0.8.6i Integer Overflow Vulnerability
Microsoft Office Detection
ISS BlackICE Vulnerable Config Files
First4Internet XCP Uninstallation CodeSupport.ocx ActiveX Control Arbitrary Code Execution
Sun Java Web Start Unauthorized Access Vulnerability (102881)
Symantec pcAnywhere Access Server detection
WinZip FileView ActiveX Control Vulnerabilities
Kaspersky Anti-Virus Check
RealPlayer for Windows < Build 6.0.12.1662
QuickTime < 7.1.6 (Windows)
OpenOffice < 2.3.1 Database Processing Code Execution Vulnerability
Symantec Scan Engine Installed
Command Antivirus odapi.dll ActiveX Control Multiple Overflow Vulnerabilities
SMB log in with W32/Deloder passwords
EDraw Office Viewer Component FtpDownloadFile Method Buffer Overflow Vulnerability
Groove Virtual Office / Workspace Multiple Vulnerabilities
WinZip Multiple Overflows
SMB Registry : Winlogon caches passwords
FLEXnet Connect Update Service Agent ActiveX (isusweb.dll) Overflow
Trend Micro Tmcomm.sys insecure permission
ATI Catalyst Dynamic Driver (atidsmxx.sys) Local Privilege Escalation
Bagle.B detection
Mozilla Thunderbird < 2.0.0.14
SaveNOW detection
Opera < 9.24 Multiple Vulnerabilities
Cisco Security Agent Detection
NetSupport Manager Client Buffer Overflow Vulnerability
RealPlayer Multiple Remote Overflows
RealPlayer for Windows Multiple Vulnerabilities (2)
R-Viewer < 1.6.3768 Multiple Vulnerabilities
Altiris AClient < 6.8.380 Local Vulnerabilities
CA Host-Based Intrusion Prevention System Server Log Data XSS
RealPlayer Remote Vulnerabilities
Safari < 3.2 Multiple Vulnerabilities
SMB Registry : permissions of keys that can lead to admin
Trend Micro UPX File Parsing Denial of Service Vulnerability
Adobe Reader < 8.1.2 Security Update 1 / 7.1.0
Installed Windows Hotfixes
Mozilla Browser < 1.7.12
HP Info Center ActiveX Control Buffer Overflow Vulnerabilities
Sun Java JDK/JRE 5 < Update 16 Multiple Vulnerabilities
VLC Media Player < 0.8.6h Multiple Vulnerabilities
WindowsUpdate disabled
CA Multiple Products InoCore.dll File Mapping Manipulation Local Overflow
Lotus Notes Client Memory Mapped Files Vulnerability
Nullsoft Winamp IN_CDDA.dll Remote Buffer Overflow Vulnerability
activePDF Server < 3.8.6 Packet Handling Buffer Overflow (local check)
Netscape < 9.0.0.6
POWER SEARCH detection
QuickTime < 7.5 (Windows)
Mozilla Thunderbird < 1.5.0.4
MailEnable Detection
The remote host is infected by msblast.exe
Opera < 9.25 Multiple Vulnerabilities
Novell iPrint Client ActiveX Control ExecuteRequest Buffer Overflow Vulnerability
PhotoParade Player PhPInfo ActiveX Buffer Overflow Vulnerability