ID

28361

Nom

Symantec Backup Exec for Windows Servers Denial of Service Vulnerabilities

Auteurs

This script is Copyright (C) 2007-2009 Tenable Network Security, Inc.

Catégorie

Windows

Action

infos

Résumé

Checks version of bengine.exe

Description

Synopsis : The remote Windows host contains an application that is affected by several denial of service vulnerabilities. Description : Backup Exec for Windows Servers, a commercial backup product from Symantec, is installed on the remote host. The version of the Backup Exec Job Engine, bengine.exe, installed as part of Backup Exec for Windows Server on the remote host contains a null-pointer dereference error when handling exceptions. Using a specially-crafted packet, an attacker can leverage this issue to crash the affected service. In addition, it is affected by two overflow errors that can cause the service to enter an infinite loop, resulting in high CPU utilization and/or memory exhaustion. See also : http://secunia.com/secunia_research/2007-74/advisory/ http://www.securityfocus.com/archive/1/484318/30/0/threaded http://www.securityfocus.com/archive/1/484333/30/0/threaded Solution : Apply the appropriate hotfix according to the vendor advisories above. Risk factor : High / CVSS Base Score : 7.8 (CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C)

Sun JRE Java Plug-in JavaScript Security Restriction Bypass
Avira AntiVir Zip Scan Evasion
VLC Media Player < 0.9.3 XSPF Playlist Handling Memory Corruption
Opera < 9.52 Multiple Vulnerabilities
NOD32 Run-Time Decompressors Multiple Vulnerabilities
SMB NativeLanMan
Mozilla Thunderbird < 1.5.0.9
Notepad++ Ruby Source File Handling Overflow
RealPlayer Detection
DOWNLOADWARE detection
Vulnerabilities in MSDTC Could Allow Remote Code Execution (902400) - Network check
WinGate IMAP Server Directory Traversal Vulnerabilities
Firefox < 1.5.0.8
QuickTime < 7.1 (Windows)
Adobe Reader < 9.1.2 / 8.1.6 / 7.1.3
Novell exteNd Director LocalExec ActiveX (LocalExec.ocx) launch() Method Arbitrary Command Execution
PuTTY window title escape character arbitrary command execution
Vulnerability in Plug and Play Could Allow Remote Code Execution and Local Elevation of Privilege (905749) - Network Check
Opera web browser file download extension spoofing
Mozilla Thunderbird < 1.5.0.12
Flash Player APSB06-18
CA Host-Based Intrusion Prevention System Server Log Data XSS
HP Info Center ActiveX Control Buffer Overflow Vulnerabilities
QuickTime < 7.4.1 (Windows)
Potentially unwanted software
SMB registry can not be accessed by the scanner
Photo Upload Plugin Buffer Overflow Vulnerabilities
Akamai Download Manager ActiveX Control < 2.2.3.5 Remote Code Execution
Firefox IMG Tag Multiple Vulnerabilities
Adobe AIR Multiple Vulnerabilities (XSS, ID, Code Exec, more)
Firefox < 2.0.0.7
Mozilla Thunderbird < 2.0.0.14
WEBHANCER detection
SMB Last Logged On User
FREE COMMUNITY detection
Anti Virus Software Check
Computer Associates Anti-Virus Engine Multiple Scan Evasion Flaws
FLEXnet Connect Update Service ActiveX Control Multiple Code Execution Vulnerabilities
Symantec Backup Exec for Windows Servers Denial of Service Vulnerabilities
DriveLock DriveLock.exe HTTP Request Processing Remote Overflow
OpenOffice RTF Parser prtdata Tag Buffer Overflow
DSSAGENT detection
Vulnerability in MSMQ Could Allow Code Execution (Network Check)
Firefox < 1.5.0.7
SeaMonkey < 1.1.5
Akamai Download Manager ActiveX Control < 2.2.3.6 Arbitrary File Download
Wingate Proxy POP3 USER Overflow
Trend Micro Tmcomm.sys insecure permission
Novell ZENworks ESM Security Client STEngine Privilege Escalation
Sun xVM VirtualBox < 1.6.4 Local Privilege Escalation
SeaMonkey < 1.1.16
avast! CAB and SIS File Handling Buffer Overflow Vulnerabilities
Sun Java Runtime Environment jpiexp32.dll DoS
BlackBerry Multiple Products PDF Distiller Component PDF Processing Arbitrary Code Execution
WindowsUpdate disabled
Yahoo! Messenger Detection
Adobe Reader < 8.1.1
TestDirector (TD) for Mercury Quality Center SPIDERLib.Loader ActiveX Control (Spider90.ocx) ProgColor Property Overflow
Sophos PureMessage < 3.0.2 Multiple Vulnerabilities
F-Secure Multiple Products Web Console Pre-authentication Overflow
Firefox 3.x < 3.0.2
Mozilla Browser < 1.7.6
Trend Micro OfficeScan OfficeScanSetupINI.dll Remote Buffer Overflow
SMB enum services
FileZilla Server < 0.9.22 Denial of Service Vulnerabilities
Firefox < 2.0.0.16
VMware VIX API Multiple Buffer Overflow Vulnerabilities
Microsoft RPC Interface Buffer Overrun (KB824146) (network check)
Symantec Mail Security for SMTP libdayzero.dll Executable Parsing DoS
Sun Java Media Framework (JMF) Vulnerability
F-Secure RPM Parsing Integer Overflow (FSC-2008-3)
pcAnywhere Launch with Windows Caller Properties Local Privilege Escalation
SeaMonkey < 1.0.1
Novell GroupWise Internet Agent Detection
SwiftView Viewer Plugin < 8.3.5 Buffer Overflow
Firefox < 1.5.0.9 / 2.0.0.1
Installed Windows Hotfixes
MailEnable IMAP EXAMINE Command Remote Overflow
Trillian < 3.1.5.1 XMPP Decoding Heap Overflow
iTunes < 8.0 Integer Buffer Overflow (Network Check)
NetBIOS Name Service Reply Information Leakage
Trend Micro OfficeScan Client Firewall Multiple Vulnerabilities
Drag And Zip Overflow
Google Chrome < 0.3.154.9 Address Spoofing
BlackBerry Enterprise Server Attachment Service Unspecified Vulnerabilities (KB18327)
QuickTime < 7.2 (Windows)
SMB get domain SID
iParty Client Extended Character Handling Remote Overflow DoS
Adobe Reader < 8.1.2 Security Update 1 / 7.1.0
Mozilla/Firefox user interface spoofing
Google Secure Access VPN Client Installed
F-Secure Anti-Virus for Windows system32 Directory Crafted File Detection Bypass
Symantec AppStream Client LaunchObj ActiveX Control Multiple Unsafe Methods (SYM09-001)
DBTools DBManager Information Disclosure
TightVNC Viewer < 1.3.10 Multiple Integer Overflows
FlashFXP Overflow
Trillian DirectIM Packet Remote Overflow
DameWare Mini Remote Control Server Unspecified Privilege Escalation Vulnerability
Bonjour < 1.0.5 Multiple Vulnerabilities (APPLE-SA-2009-09-09)
Microsoft Windows 98 Malformed oshare Packet DoS
MailEnable IMAP Service EXAMINE Command Remote DoS
Unsupported version of Microsoft Exchange Server
Akamai Download Manager ActiveX Control < 2.2.1.0 Multiple Vulnerabilities
BlackBerry Enterprise Server / Unite! PDF Distiller Component Vulnerabilities (KB17118 / KB17119)
SeaMonkey < 1.1.11
Citrix Presentation Server Client Unspecified Remote Code Execution
The remote host is infected by a virus
Firefox < 1.5.0.12 / 2.0.0.4
DivX Web Player < 1.4.3.4 Stream Format Chunk Buffer Overflow
WinProxy < 6.1a Telnet Proxy Remote DoS
McAfee Common Management Agent 3.6.0 UDP Packet Handling Format String (Registry Check)
McAfee Anti Virus Check
Sophos Anti-Virus CAB, RAR and LZH Scanning Evasion
SMB use host SID to enumerate local users
Mozilla Thunderbird < 1.0.7
iTunes < 7.4 Malformed Music File Heap Overflow (Windows)
Windows Live OneCare AntiVirus Check
Deterministic Network Extender dne2000.sys Local Privilege Escalation
WinZip 11.x gdiplus.dll Unspecified Vulnerability
SeaMonkey < 1.1.9
Dropbox Software Detection
RealPlayer PNG deflate heap corruption
SeaMonkey < 1.1.7
Kaspersky Online Scanner kavwebscan.CKAVWebScan ActiveX (kavwebscan.dll) Format String Arbitrary Code Execution
Gator/GAIN Spyware Installed
Safari < 3.1.2 Multiple Vulnerabilities
Mozilla Thunderbird < 2.0.0.21 Multiple Vulnerabilities
CA Multiple Products InoCore.dll File Mapping Manipulation Local Overflow
Mozilla Thunderbird < 1.5.0.13 / 2.0.0.6
AVIRA Desktop for Windows ACE Archive Handling Buffer Overflow
Cisco VPN Client Version Detection
BitDefender CAB Scan Evasion
JanaServer < 2.4.5 Multiple Remote DoS
iMesh IMWeb.IMWebControl ActiveX (IMWeb.dll) SetHandler Method Arbitrary Code Execution
Citrix Web Interface 4.6 / 5.0 / 5.0.1 Unspecified XSS
QuickTime < 7.3.1 (Windows)
Firefox < 3.0.6 Multiple Vulnerabilities
Ipswitch IM Server < 2.07 Multiple Function Remote DoS
F-Secure ZIP/RAR Archive Handling Overflow Vulnerabilities
WinPcap NPF.SYS Local Privilege Escalation
Spybot Search & Destroy Detection
Netscape < 9.0.0.4
NetVault Report Manager Scheduler File Name Handling Overflow
Firefox < 2.0.0.20 Cross Domain Data Theft
WebEx Meeting Manager WebexUCFObject ActiveX Control Buffer Overflow
ISS BlackICE Multiple Remote Vulnerabilities
Mozilla Browser < 1.7.12
Vulnerability in Windows Active Directory Could Allow Remote Code Execution (926122) - Network Check
Webroot SpySweeper Enterprise Check
Adobe Acrobat < 6.0.5
Sun Java Runtime Environment XML Signature Command Injection (102993)
Trillian Detection
Windows Administrator Password Known by W32/Deloader
Possible GDI+ compromise
Mozilla SOAPParameter Integer Overlow
Cisco Security Agent Detection
ZipCentral ZIP File Handling Buffer Overflow
Opera < 9.25 Multiple Vulnerabilities
SAPlpd < 6.29 Multiple Vulnerabilities (local check)
iTunes AAC File Parsing Overflow (Registry Check)
SMB guest account for all users
OpenOffice Detection
SMB Registry : Windows 2003 Server SP2
Sony ImageStation AxRUploadServer.AxRUploadControl ActiveX (AxRUploadServer.dll) SetLogging Method Overflow
Firefox < 2.0.0.13
Windows Security Center Settings
Winamp < 5.5 FLAC Plug-in Multiple Buffer Overflow Vulnerabilities
Sun Java Runtime Environment GIF Image Handling Buffer Overflow (102760)
Google Chrome < 0.2.149.29 Multiple Vulnerabilities (OF, DoS)
Shockwave Player APSB09-08
GAMSoft TelSrv 1.4/1.5 Username Overflow DoS
Adobe Reader < 9.1 / 8.1.4 / 7.1.1
Microsoft Windows Domain Name Server Service Remote Procedure Call Interface Vulnerability
Microsoft Windows NetBIOS NULL Source Name DoS
FileZilla FTP Client Unspecified Overflow
IBM eGatherer ActiveX RunEgatherer Function Overflow
SMB LanMan Pipe Server browse listing
Pidgin < 2.5.6 Multiple Buffer Overflows
McAfee E-Business Server Administration Client Length Remote DoS
SMB blank administrator password
JS.Scob.Trojan or Download.Ject Trojan
BitDefender Client Log Creation Functionality Format String
Hexamail Server pop3 Service USER Command Remote Overflow (registry check)
Novell Netware Client Print Provider (nwspool.dll) Multiple Function Overflow
Quake 3 Arena Malformed Connection Packet DoS
Netscape < 9.0.0.6
Real Video Server Telnet Malformed Data Remote DoS
Opera Detection
Symantec Mail Security for SMTP Message Handling Arbitrary Code Execution
Trillian < 3.1.5.1 Multiple Vulnerabilities
Firefox < 2.0.0.12
SMB Registry : is the remote host a PDC/BDC
Adobe Reader < 8.1.3 Multiple Vulnerabilities (OF, Code Exec, more)
Vulnerability in the Client Service for NetWare Could Allow Remote Code Execution (899589) - Network Check
Firefox < 2.0.0.19 Multiple Vulnerabilities
Google Chrome < 1.0.154.53
RealPlayer for Windows < Build 6.0.12.1662
MDaemon IMAP Service CREATE Command Mailbox Name Handling Overflow
Yahoo! Messenger < 8.1.0.416 Multiple Vulnerabilities
PuTTY SSH2 authentication password persistence weakness
WebEx Downloader ActiveX Control Command Injection
Firefox < 2.0.0.6
Altiris Deployment Solution Server < 6.9.355 Password Disclosure (SYM08-020)
LPViewer ActiveX Control Multiple Buffer Overflow Vulnerabilities
Mozilla Thunderbird < 1.5.0.8
Google Toolbar HTML Injection Vulnerability
SMB Registry : permissions of keys that can change common paths
RealPlayer multiple remote overflows
Yahoo! Messenger YVerInfo ActiveX Buffer Overflow Vulnerabilities
Wireshark / Ethereal Detection (Windows)
Macrovision FLEXnet DWUpdateService ActiveX (agent.exe) Multiple Method Arbitrary Command Execution
WinGate Invalid SMTP State Format String DoS
Vulnerability NetDDE Could Allow Code Execution (Netbios Check)
Firefox < 1.0.7
MailEnable IMAP Service (meimaps.exe) Crafted RENAME Command Remote DoS
Nessus ScanCtrl ActiveX Multiple Method File Manipulation
FileZilla FTP Server MLSD Command Overflow
Microsoft Windows RPC Endpoint Manager Malformed Packet DoS
SMB share files enumerated
Aurigma Image Uploader ActiveX Control < 4.5.70 Buffer Overflow Vulnerabilities
CA eTrust Intrusion Detection System Key Exchange Remote DoS
Firefox 3.x < 3.0.1
Firefox < 1.0.4
HP Instant Support HPISDataManager.dll ActiveX Control < 1.0.0.24 Vulnerabilities
SMB Registry : permissions of HKLM
Sun Java Runtime Environment Multiple Vulnerabilities (102729 and 102732)
Symantec Mail Security for SMTP < 5.0.1 Patch 200 Unspecified DoS
Lenovo Rescue and Recovery tvtumon.sys Heap Overflow Vulnerability
Sun Java JDK/JRE 6 < Update 7 Multiple Vulnerabilities
activePDF Server < 3.8.6 Packet Handling Buffer Overflow (local check)
Novell GroupWise Internet Agent < 7.03 HP3 / 8.0 HP2 Multiple Buffer Overflows
Safari < 3.1.1 Multiple Vulnerabilities
WILDTANGENT detection
AOL Instant Messenger is Installed
Mozilla Thunderbird < 1.5
ICQ < 6 Build 6059 Message Processing Format String
Google Desktop detection
Novell Client srvloc.sys Crafted Packet Unspecified Remote DoS
SeaMonkey < 1.1.14 Multiple Vulnerabilities
Mozilla Thunderbird < 2.0.0.9
Opera web browser address bar spoofing weakness (2)
GATOR detection
Firefox < 2.0.0.18 Multiple Vulnerabilities
FortiClient Host Security fortimon.sys Crafted Request Local Privilege Escalation
Adobe PDF Plug-In < 8.0 / 7.0.9 / 6.0.6
Rhapsody SWF File Handling Buffer Overflow
Opera Resource Detection
Firefox < 1.5.0.11 / 2.0.0.3
Firefox < 1.5.0.10 / 2.0.0.2
Mozilla Thunderbird < 2.0.0.12
EDraw Office Viewer Component ActiveX (EDraw.OfficeViewer) FtpDownloadFile Method Overflow
VeriSign ConfigChk ActiveX Control (VSCnfChk.dll) Buffer Overflow
Novell iPrint Client nipplib.dll ActiveX (ienipp.ocx) IppCreateServerRef Function Overflow
Microsoft Windows SMB Shares Access
Putty Modpow integer handling
Windows USB Device Usage Report
Mozilla Thunderbird < 1.5.0.7
QuickTime < 7.1.3 (Windows)
NOD32 File Processing Vulnerabilities
Intel PRO/Wireless 2100 Network Connection Driver Local Privilege Escalation Vulnerability
eScan < 9.0.718.1 MicroWorld Agent service (MWAGENT.EXE) Command Decryption Overflow
Trillian aim:// URI Handler Vulnerabilities
Cerbere HTTP Proxy Server Host: Header Remote DoS
First Response < 1.1.1 Multiple Vulnerabilities
CRYPTO-Server installvariables.properties LDAP Credential Local Disclosure
Camtasia Studio Pre-generated SWF File csPreloader Variable Unspecified Arbitrary Code Execution
WinPcap NPF.SYS bpf_filter_init Arbitrary Array Indexing Local Privilege Escalation
Novell NetIdentity Agent < 1.2.4 Arbitrary Pointer De-reference Code Execution
Adobe Reader Detection
Sun Java Runtime Environment Detection
Novell iPrint Client for Windows ienipp.ocx ActiveX Multiple Variable Overflow
Opera < 9.02 Multiple Vulnerabilities
Avira AntiVir RAR/CAB/ZIP/LH Scan Evasion
Winamp Malformed Midi File Buffer Overflow (2)
QuickTime < 7.0.4 (Windows)
Adobe Contribute Publishing Server Administrator Password Disclosure
Trend Micro Scan Engine Tmxpflt.sys Buffer Overflow
Software Enumeration (via SMB)
ICUII Detection
First4Internet XCP Uninstallation CodeSupport.ocx ActiveX Control Arbitrary Code Execution
Opera < 9.63 Multiple Vulnerabilities
Trend Micro OfficeScan Multiple CGI Module Vulnerabilities
ScriptLogic logging share
RoboHelp Server Help Errors Vulnerabilities (APSB08-16)
AOL Radio AmpX ActiveX Control Buffer Overflow Vulnerabilities
Trend Micro Multiple Products Token Prediction Security Bypass
Altiris Deployment Solution < 6.9.176 Multiple Vulnerabilities (SQLi, Auth Bypass, Priv Esc)
Google Chrome < 1.0.154.64
FileZilla < 2.2.32 Format String Vulnerabilities
Nullsoft Winamp Multiple Unspecified Vulnerabilities
Trillian Multiple HTTP Responses Buffer Overflow Vulnerabilities
NOD32 3.0/ESET Smart Security < 3.0.684 Local Privilege Escalation
Norton Anti Virus Check
Intuit QuickBooks Online Edition < 10 ActiveX Multiple Vulnerabilities
SeaMonkey < 1.1.13 Multiple Vulnerabilities
RealPlayer for Windows Multiple Vulnerabilities (2)
ESET Remote Administrator < 3.0.105 HTML Injection
Yahoo! Messenger AudioConf ActiveX Control (yacscom.dll) Multiple Property Overflow
Windows Messenger is installed
WinGate Telnet Proxy localhost Connection Saturation DoS
SeaMonkey < 1.1.17 Multiple Vulnerabilities
MusicMatch Multiple Vulnerabilities
SMB use domain SID to enumerate users
Mozilla/Firefox multiple flaws
SeaMonkey < 1.0.2
netOctopus Agent nantsys.sys MSR Write Local Privilege Escalation
Winamp < 5.2 Multiple Vulnerabilities
Mercur Mailserver POP3 Server AUTH Command Remote Overflow
MailEnable Webmail Malformed Quoted-printable Email DoS (CVE-2006-0504)
SMB Registry : SQL7 Patches
OpenOffice < 2.3.1 Database HSQLDB Database Document Handling Arbitrary Java Code Execution
MDaemon Content Filter Traversal Arbitrary File Write
SAHAGENT detection
The remote host is infected by msblast.exe
Novell iPrint Client ActiveX Control Multiple Vulnerabilities
PuTTY Multiple Integer Overflow Vulnerablities
Windows Reboot Required
SMB Registry : permissions of the SNMP key
Kaspersky Multiple Products kl1.sys Driver Local Overflow
Internet Explorer version check
PacketTrap pt360 TFTP Server < 1.0.3302.0 Multiple Vulnerabilities
DESlock+ < 3.2.7 Multiple Local Vulnerabilities
ImageMagick < 6.5.2-9 Integer Overflow
Flash Player APSB08-18 / APSB08-20 / APSB08-22
Ask.com Toolbar AskJeevesToolBar.SettingsPlugin.1 ActiveX (askBar.dll) ShortFormat Property Arbitrary Code Execution
Microsoft Windows Server Service Crafted RPC Request Handling Unspecified Remote Code Execution (958644) - Network check
VLC Media Player Detection
CommuniGate Pro Server < 5.0.7 LDAP BER Decoding Multiple Vulnerabilities
Broadcom Wireless Driver (BCMWL5.SYS) Probe Response SSID Overflow
SizerOne ActiveX Control AddTab Method Remote Buffer Overflow
Vulnerability in Microsoft Distributed Transaction Coordinator Could Allow Denial of Service (913580) - Network check
BitDefender PDF Scan Evasion
F-PROT Antivirus Engine < 4.4.4 Multiple File Handling DoS Vulnerabilities
Symantec Fax Viewer Control ActiveX Control AppendFax Overflow
SeaMonkey < 1.0.8
Sun Java Runtime Environment Image Parsing Vulnerabilities (102934)
Security issues in the remote version of FlashPlayer
Possible Compromise through a vulnerability in RPC
AIM Buddy Icon Overflow Vulnerability
Trend Micro OfficeScan tmlisten.exe Malformed Data Remote DoS
Winamp < 5.552 gen_ff.dll Integer Overflow
Sun Java Runtime Environment DoS
MailEnable IMAP STATUS Command Remote Overflow
SeaMonkey < 1.1.8
Mozilla Browser < 1.7.8
Microsoft Whale Client Components ActiveX (WhlMgr.dll) Multiple Method Overflows
Winamp < 5.13 Multiple Buffer Overflow Vulnerabilities
VMware Workstation < 5.5.4 Build 44386 Multiple Vulnerabilities
SNMPc Management Server Login Packet Remote DoS
Pidgin Detection (Windows)
Adobe Reader < 7.0.8 Multiple Unspecified Vulnerabilities
Trend Micro OfficeScan HTTP Request Remote Buffer Overflow
Symantec Mail Security for Microsoft Exchange Installed
SecureCRT SSH1 protocol version string overflow
Now SMS/MMS Gateway < 2008.02.22 Buffer Overflow Vulnerabilities
SonicWall NetExtender NELaunchCtrl ActiveX Control Buffer Overflow Vulnerabilities
Mozilla Thunderbird < 2.0.0.19 Multiple Vulnerabilities
Rhapsody vidplin.dll AVI Processing Heap Overflow Vulnerability
HP HPeDiag ActiveX Control Multiple Vulnerabilities (Code Exec, OF, ID)
NetSupport NSM / NSS Initial Connection Setup Configuration Exchange Remote Overflow
SMB Registry : Classic Logon Screen
Vulnerability in Routing and Remote Access Could Allow Remote Code Execution (911280) - Network check
Mozilla Thunderbird < 2.0.0.18 Multiple Vulnerabilities
Multiple flaws in the Opera web browser (2)
QuickTime < 7.6 (Windows)
Buffer Overrun in Messenger Service (real test)
Vulnerability in Printer Spooler Service Could Allow Remote Code Execution (896423) - Network Check
Command Antivirus odapi.dll ActiveX Control Multiple Overflow Vulnerabilities
SMB Registry : permissions of winlogon
Office Viewer Component < 5.0 Multiple Vulnerabilities
SeaMonkey < 1.0.3
VERITAS Backup Exec Agent Browser Remote Buffer Overflow Vulnerability
MailEnable IMAP Server W3C Logging Overflow
SMB NULL session
Flash Player Improper Memory Access Vulnerabilities
SMB Registry : Windows Vista / Server 2008 SP2
Sophos Anti-Virus UPX and BZIP File Multiple Vulnerabilities
WinZip Multiple Overflows
Vulnerability in Server Service Could Allow Remote Code Execution (921883) - Network check
Flash Player APSB08-11
Dragon Telnet Server Login Name Handling Remote Overflow DoS
Opera remote heap corruption vulnerability
WinRAR < 3.71 Archive Handling Vulnerabilities
LANDesk Management Suite Alert Service (aolnsrvr.exe) Remote Overflow
Symantec Mail Security for Domino Arbitrary Mail Relay
Altiris Deployment Solution Client Agent < 6.9.355 Local Privilege Escalation (SYM08-019)
3D-FTP Multiple Directory Traversal Vulnerabilities
TIMESINK detection
Brilliant Digital Software Detection
Facebook Photo Uploader ActiveX Control < 4.5.57.1 Buffer Overflow Vulnerabilities
OpenOffice.org < 2.0.3
SMB Registry : XP Service Pack version
MDaemon < 9.0.6 POP3 Server USER / APOP Command Remote Overflow
RealPlayer for Windows < Build 6.0.14.806 / 6.0.12.1675
SmartFTP Overflow
Patchlink Detection
Unsupported Windows 95/98/ME Installation
The ScriptLogic service is running
SaveNOW detection
PGP Desktop < 9.10 Multiple Local DoS
WinGate DNS Compressed Name Pointer DoS
Adobe Reader < 6.0.6 / 7.0.9
Safari < 4.0
WinGate Passwordless Default Installation
SMB shares enumeration
Kaspersky AV 6.0 Multiple Vulnerabilities
avast! Server Edition LHA Archive Extended-header Field Processing Overflow
Opera < 9.00 Multiple Vulnerabilities
hMailServer < 4.4.2 build 279 IMAP Command Handling Remote DoS
IBM TXSeries for Multiplatforms forcepurge Acknowledgement Vulnerability
McAfee Anti-Virus ZIP/RAR File Scan Evasion
RealPlayer Remote Vulnerabilities
Trillian MSN Overflow
Opera < 9.64 Multiple Vulnerabilities
AXIS Camera Control (aka CamImage) AxisCamControl.ocx ActiveX SaveBMP Method Overflow
SMB Registry : No dial in
Google Chrome < 2.0.172.33
Trillian < 3.1.12.0 Multiple Vulnerabilities
XUpload ActiveX Control AddFolder Method Buffer Overflow
SMB enum services over \srvsvc
Opera < 8.54 Multiple Vulnerabilities
Nessus Windows GUI XSS
HP Instant Support Driver Check HPSDDX Class (SDD) ActiveX (sdd.dll) queryHub Function Overflow
Lotus Notes Client < 7.0.3 / 8.0.1 Buffer Overflow Vulnerabilities
NetSupport Manager Client Spoofing Remote Authentication Bypass
QuickTime < 7.1.5 (Windows)
RIS Installation Check
Novell Client nwspool.dll Buffer Overflow Vulnerabilities (bug 300870)
Computer Associates Vet Library Remote Heap Overflow Vulnerability
FlashPlayer files reading
scan for UPnP/Tcp hosts
DjVu Browser Plug-in Multiple Buffer Overflow Vulnerabilities
Nullsoft Winamp IN_CDDA.dll Remote Buffer Overflow Vulnerability
MS NNTP Vulnerability (883935)
QuickTime Detection
Opera Multiple Vulnerabilities (3)
NOD32 Antivirus System Check
SeaMonkey < 1.1.12
iTunes For Windows iTunesHelper.exe Path Subversion Local Privilege Escalation (Registry Check)
WinSCP URI Handler Arbitrary File Access
SMB Registry : permissions of keys that can lead to admin
Kaspersky Labs Anti-Virus IOCTL Local Privilege Escalation
Mozilla Thunderbird < 1.0.6
Office Viewer Component ActiveX (officeviewer.ocx) HttpDownloadFile Method Traversal Arbitrary File Overwrite
Opera remote location object cross-domain scripting vulnerability
ThinkVantage System Update < 3.14 SSL Certificate Issuer Spoofing
Microsoft Dynamics GP < 10.0 Multiple Vulnerabilities
OpenOffice < 2.4.1 rtl_allocateMemory() Function Crafted Document Handling Integer Overflow
IRCXPro Clear Text Passwords
MDaemon Server DomainPOP Malformed Message DoS
Panda Antivirus TAR / CAB Scan Evasion
Altiris Notification Server Agent GUI Local Privilege Escalation (KB 39159)
Mozilla Thunderbird < 1.5.0.4
Firefox < 3.0.10 Multiple Vulnerabilities
QuickTime PictureViewer Buffer Overflow
Van Dyke SecureCRT Remote Command Execution Vulnerability
ER Mapper NCSView ActiveX Buffer Overflow Vulnerabilities
OpenOffice < 2.3 TIFF Parser Buffer Overflow Vulnerabilities
Winamp < 5.55 Remote Buffer Overflow
QuickTime < 7.0.3 (Windows)
Opera < 9.21 Transfer Manager Torrent File Handling Overflow
Firefox < 1.5.0.4
Opera web browser URI obfuscation
Sun JRE Java Plug-in JavaScript Security Restriction Bypass (2)
Trillian < 3.1.6.0 Multiple Vulnerabilities
Computer Associates HIPS 'xfw.sys Multiple Remote Vulnerabilities
Foxit Reader < 3.0 Build 1506 / 2.3 Build 3902 Multiple Flaws
Prevx Pro 2005 <= 1.0.0.1 Multiple Vulnerabilities
IBM Access Support ActiveX Control GetXMLValue Method Overflow
Kaspersky Antivirus PE File Handling DoS
Symantec Scan Engine Installed
MySpace Uploader ActiveX Control < 1.0.0.6 Action Property Buffer Overflow
Microsoft Windows Message Queuing Service RPC Request Handling Remote Code Execution (951071) - Network Check
Netsky.B
Novell iPrint Control ActiveX (ienipp.ocx) ExecuteRequest() Method Overflow
Novell Client nicm.sys Local Privilege Escalation
XnView RGBE File Handling Buffer Overflow
Mozilla Browser < 1.7.9
Opera web browser HREF overflow
Opera < 9.50 Multiple Vulnerabilities
Firefox < 1.5.0.2
Nullsoft Winamp Filename Handler Local Buffer Overrun
Yahoo! Messenger Webcam ActiveX Buffer Overflow Vulnerabilities
SMB Registry : Autologon
SeaMonkey < 1.0.6
VCATCH detection
Opera < 9.10 Multiple Vulnerabilities
Gracenote CDDBControl ActiveX Proxy Configuration Parameters Multiple Overflows
VMware Remote Arbitrary Code Execution Vulnerability
eDirectory eMBox Utility Unauthorized Access
Firefox < 1.5.0.3
AVG Anti-Virus Crafted UPX File Handling Divide-by-zero Remote DoS
Kaspersky Anti-Virus for Check Point FireWall-1 Unspecified DoS
RealPlayer for Windows < Build 6.0.12.1483
SMB Detection
BitDefender Software Detection
ESET Anti-Virus .CAB File Scan Evasion
VLC Media Player < 0.8.6f Multiple Vulnerabilities
Yahoo! Messenger YMMAPI.YMailAttach ActiveX (ymmapi.dll) Overflow
XCP DRM Software Detection
Sun Java J2SE 1.4.2 < Update 18 Multiple Vulnerabilities
Adobe AcroPDF ActiveX Control Multiple Vulnerabilities
IBM AFP Viewer Plug-in SRC Property Buffer Overflow
Adobe Reader < 8.1.2 / 7.1.0
Trend Micro UPX file parsing flaw detection
Firefox < 2.0.0.15
Sun Java JRE Plug-in Capability Arbitrary Package Access
SAP GUI KWEdit ActiveX Control SaveDocumentAs() Insecure Method
7Zip < 4.57 Archive Handling Unspecified Issue
VLC Media Player < 0.8.6h Multiple Vulnerabilities
Microsoft Windows Remote Desktop Protocol Server Private Key Disclosure Vulnerability
Microsoft Windows Media Server Malformed Handshake Sequence DoS
Rhapsody Detection
HP Virtual Rooms WebHPVCInstall.HPVirtualRooms14 ActiveX Control Buffer Overflow Vulnerabilities
Timbuktu Pro < 8.6.5 Multiple Vulnerabilities
Opera skin zip file buffer overflow vulnerability
Stunnel < 4.23 Local Privilege Escalation
QuickTime < 7.5 (Windows)
Symantec Backup Exec Calendar ActiveX Control Multiple Vulnerabilities (SYM08-007)
OpenOffice < 2.2 Multiple Vulnerabilities
iTunes < 8.0 (Windows)
LogMeIn Agent Detection
RADIATE detection
CA DM Deployment Common Component Multiple DoS
Opera < 9.61 Multiple Vulnerabilities
IPINSIGHT detection
Sun Java Web Start PersistenceService Application Traversal Arbitrary File Overwrite (102957)
Opera web browser large javaScript array handling vulnerability
Opera < 9.22 Multiple Vulnerabilities
CA ARCserve Backup Agent Credential Disclosure
Netscape Browser Detection
SiteKiosk < 6.5.150 Multiple Vulnerabilities
Adobe Reader getAnnots() JavaScript Method PDF Handling Memory Corruption
HP Virtual Rooms Client < 7.0.1 ActiveX Control Dangerous Methods
Opera < 7.22 Multiple Vulnerabilities
Panda Security cpoint.sys Kernel Memory Corruption
Symantec Decomposer Multiple Vulnerabilities (SYM08-006)
AxisCamControl ActiveX Control Buffer Overflow Vulnerability
Trend Micro InterScan Web Security Suite < 3.1 Build 1237 Multiple Flaws
DameWare Mini Remote Control Authentication Credentials Persistence Weakness
Compromised Windows System (hosts file)
SMB Registry : value of SFCDisable
Microsoft Office Detection
Flash Player Detection
SeaMonkey < 1.1.15 Multiple Vulnerabilities
Zoomify Viewer ActiveX Buffer Overflow Vulnerabilities
Microsoft Host Integration Server (HIS) SNA RPC Request Remote Overflow (956695) - Network Check
EDraw Office Viewer ActiveX (officeviewer.ocx) HttpDownloadFileToTempDir Method Overflow
CuteFTP < 5.0.2.0 multiple flaws
Netscape Browser No Longer Supported
iTunes Version Detection (Windows)
QuickTime < 7.4.5 (Windows)
Opera < 9.60 Multiple Vulnerabilities
7-Zip ARJ File Handling Overflow
QuickTime player buffer overflow
McAfee ePolicy Orchestrator HTTP Server Remote Buffer Overflow Vulnerability
Google Chrome < 1.0.154.65
QuickTime < 7.6.2 (Windows)
Adobe AIR Detection
BONZI BUDDY Software Detection
Symantec Norton AntiVirus Version Detection
Gracenote CDDBControl ActiveX Control Option String Overflow
VMware Server Detection (Windows)
Firefox Cache File
VMware Workstation Detection
Google Desktop Cross-Site Scripting Flaw
SMB OpenEventLog() over \srvsvc
OpenOffice 2.x < 2.4.2 WMF and EMF File Handling Buffer Overflows
3ivx MPEG-4 < 5.0.2 Buffer Overflow
Ffdshow < rev2347_20081123 Remote Buffer Overflow
PhotoParade Player PhPInfo ActiveX (PhPCtrl.dll) FileVersionof Property Overflow
SMB get host SID
Anzio Web Print Object (WePO) ActiveX mainurl Variable Buffer Overflow
Novell GroupWise Windows Client Arbitrary Email Access
Nullsoft Winamp Remote Denial of Service
Firefox < 1.0.8
SMB Registry : permissions of the Microsoft Transaction Server key
Novell GroupWise Authentication Credentials MiTM Disclosure
iTunes < 8.1 (Windows)
CA Multiple Products inoweb Console Server Authentication Remote Overflow
Songbird Detection
QuickTime < 7.4 (Windows)
Wireshark / Ethereal 0.99.6 to 1.0.5 Multiple Denial of Service Vulnerabilities
Mozilla Thunderbird < 1.0.2
Blac'oon FTP Server blac'oon.mdb Cleartext Password Disclosure
Vulnerability in SMBv2 Could Allow Remote Code Execution (942624) - Network check
SeaMonkey < 1.0
Cygwin < 1.5.24 cygwin1.dll Crafted Filename Handling Overflow
Sun Java Runtime Environment and Web Start Multiple Vulnerabilities (103072, 103073, 103078, 103079, 103112)
mIRC Detection
Firefox < 1.5.0.5
MS Task Scheduler vulnerability
QuickTime < 7.5.5 (Windows)
AUREATE Software Detection
Macrovision SafeDisc secdrv.sys Crafted METHOD_NEITHER IOCTL Local Overflow
Novell Distributed Print Services (NDPS) Print Provider (NDPPNT.DLL) Remote Overflow
Vulnerabilities in TCP/IP Could Allow Remote Code Execution (network check)
Kaspersky Antivirus UPX File Decompression DoS
R-Viewer < 1.6.3768 Multiple Vulnerabilities
Firefox 3.x < 3.0.4 Multiple Vulnerabilities
Opera web browser address bar spoofing weakness
WorldMail IMAP Server Traversal Arbitrary Mail Spool Access
HP Data Protector Express Denial of Service
SeaMonkey < 1.0.5
Novell Client Buffer Overflow
Web3000 detection
Microsoft SQL Server Multiple Privilege Escalation (941203) - Network Check
Mozilla Thunderbird < 1.5.0.5
LeapFTP Overflow
Winamp < 5.35 MP4 File Handling Buffer Overflow
VLC Media Player 0.5.0 to 0.9.5 Stack-Based Buffer Overflows
NCASE detection
Google Chrome < 1.0.154.48
Vulnerability in Web Client Service Could Allow Remote Code Execution (911927) - network check
Vulnerability in SMB Could Allow Remote Code Execution (896422) - Network Check
MailEnable Webmail Malformed Encoded Quoted-printable Email DoS (CVE-2006-1338)
WebWasher Remote ARJ Decoder Malformed Archive Handling DoS
ICQ Detection
Symantec Mail Security for SMTP File Parsing Vulnerabilities
Conficker Detection - Network check
CA eTrust Antivirus WebScan ActiveX Control Vulnerabilities
NOD32 Antivirus Local File Creation
SeaMonkey < 1.1.4
QuickTime < 7.2 Security Update (Windows)
WinSCP URL Protocol Handler Arbitrary File Transfer
Opera JavaScript Denial of Service
WinZip FileView ActiveX Control Vulnerabilities
NOD32 Long Path Name Stack Overflow Vulnerabilities
PGP Desktop PGPserv Crafted Data Object Arbitrary Code Execution
Timbuktu Pro < 8.6.7 PlughNTCommand Named Pipe Remote Stack Buffer Overflow
SAP GUI EAI WebViewer3D ActiveX Control Buffer Overflow
AntiVir File Handling Vulnerabilities
Opera < 9.24 Multiple Vulnerabilities
Opera < 8.50 Multiple Vulnerabilities
VLC Media Player < 0.8.6i WAV File Handling Integer Overflow
Firefox < 1.0.2
Realtek HD Audio Codec Drivers Multiple Local Privilege Escalation Vulnerabilities
Altiris AClient < 6.8.380 Local Vulnerabilities
Vulnerability in Microsoft SQL Server Could Allow Remote Code Execution (959420) - Network Check
Flash Player APSB09-01
MDaemon IMAP Server Multiple Command Local DoS
Panda Antivirus EXE File Parsing Overflow
SMB log in as users
Vulnerability in Windows Could Allow Information Disclosure (888302) (network check)
Trend Micro VSAPI ARJ Handling Heap Overflow
MDaemon Webconfig IMAP Malformed URL DoS
HP ProCurve Manager Remote Unauthorized Access to Data (HPSBMA02420 SSRT071458)
SMB Windows9x password verification vulnerability
SeaMonkey < 1.1.10
Kaspersky Anti-Virus Check
Opera < 9.62 Multiple Vulnerabilities
Cisco VPN Client on Windows Dial-up Networking Dialog Local Privilege Escalation
SMB Registry : permissions of Schedule
Safari < 3.2.2
Mozilla Thunderbird < 2.0.0.17
Compression Plus CP5DLL32.DLL ZOO Archive Header Processing Overflow
Gupta SQLBase EXECUTE buffer overflow
Firefox < 2.0.0.14
Firefox Downloaded Files Removal
Foxit Reader JPEG2000 / JBIG Decoder Add-On < 2.0.2009.616 Multiple Vulnerabilities
Microsoft Windows Distributed Transaction Coordinator (DTC) Malformed Input DoS
RealPlayer Skin File Remote Buffer Overflow
RealPlayer Multiple Remote Overflows
F-Secure Products ZIP/RAR File Scan Evasion (FSC-2009-1)
Cisco Security Agent for Microsoft Windows Crafted SMB Packet Remote Overflow
Mozilla Thunderbird < 2.0.0.16
CesarFTP settings.ini Authentication Credential Cleartext Disclosure
Acer LunchApp.APlunch Arbitrary Command Execution
Microsoft Hotfix KB828741 (network check)
ISS BlackICE/PC Protection Unprivileged User Local DoS
GdPicture Multiple ActiveX Control SaveAsPDF Method Arbitrary File Overwrite
Ipswitch IMail Client Multipart MIME E-mail Message Handling Overflow
BETTERINTERNET Software Detection
Winamp Malformed Midi File Handling Buffer Overflow
Opera web browser news url denial of service vulnerability
SolidWorks Sldimdownload ActiveX Control Arbitrary Code Execution
Using NetBIOS to retrieve information from a Windows host
Microsoft Windows ICMP Type 9 Packet Remote DoS
IA eMailServer IMAP4 LIST Command Format String Remote DoS
Firefox < 3.0.7 Multiple Vulnerabilities
Learn2 STRunner ActiveX Control Multiple Buffer Overflow Vulnerabilities
AOL Instant Messenger (AIM) Program Detection
Mozilla/Firefox security manager certificate handling DoS
Firefox < 2.0.0.17
SMB Registry : permissions of the RAS key
Mozilla/Firefox default installation file permission flaw
Opera < 9.23 Crafted Javascript Arbitrary Code Execution
EasyMail Objects IMAP4 Component Connect Method Remote Overflow
Firefox < 1.0.1
VMware Player detection (Windows)
McAfee E-Business Server Authentication Packet Remote Overflow
VMware Workstation < 5.5.5 and Server < 1.0.4 Multiple Vulnerabilities
Macrovision InstallShield InstallScript One-Click Install ActiveX Arbitrary Code Execution
Google Chrome < 1.0.154.59
WinRAR LHA Filename Handling Buffer Overflow Vulnerabilities
POWER SEARCH detection
MailEnable IMAP Service Multiple Remote Buffer Overflows
Detect CIS ports
Skype Networking Routine Heap Overflow Vulnerability (SMB check)
Ipswitch IMail < 8.13 Multiple Remote DoS
AVG Anti-virus avg7core.sys 0x5348E004 IOCTL Local Privilege Escalation
MAPQUEST TOOLBAR detection
Yahoo! Widgets YDP YDPCTL.YDPControl.1 ActiveX (YDPCTL.dll) Buffer Overflow
MDaemon IMAP Server Mail Folder Name Format String
Intel PRO/Wireless Network Connection Drivers Remote Code Execution Vulnerabilities
CA BrightStor ARCserve Backup ListCtrl ActiveX (ListCtrl.ocx) AddColumn() Method Overflow
PhatBOT detection
EasyMail SMTP Object ActiveX Control Buffer Overflow Vulnerabilities
RealPlayer ActiveX Control Heap Memory Corruption Vulnerabilities
FlipViewer ActiveX Control < 4.1 Buffer Overflow Vulnerabilities
Default password (db2admin) for db2admin account on Windows
The messenger service is running
SMB Registry : Win2k Service Pack version
Creative Software AutoUpdate Engine ActiveX (CTSUEng.ocx) Unspecified Overflow
Microsoft Windows PPTP Server Malformed Control Packet Remote DoS
Groove Virtual Office / Workspace Multiple Vulnerabilities
Vulnerability in Plug and Play Service Could Allow Remote Code Execution (899588) - Network Check
Trend Micro OfficeScan cgiRecvFile.exe ComputerName Parameter Buffer Overflow
Sun Java Applet Invocation Version Specification
Panda Antivirus Check
Microsoft Windows NT WINS Service Malformed Data DoS
Mozilla/Thunderbird multiple flaws
AutoDesk LiveUpdate ActiveX Control ApplyPatch Method Execution
MERCUR Messaging Control Server Multiple Buffer overflow Vulnerabilities
The alerter service is running
Citrix Presentation Server Clients Program Neighborhood Agent (PNAgent) Content Redirection Remote DoS
Google Chrome < 1.0.154.46 Multiple Vulnerabilities
ShockWave Player ActiveX Installer Buffer Overflow
3DGreetings Player ActiveX Buffer Overflow Vulnerabilities
AIM Smiley Icon Location Denial Of Service Vulnerability
Trend Micro Anti Virus Check
Novell Client nwfs.sys Local Privilege Escalation
Winamp < 5.52 Ultravox Streaming Metadata Parsing Buffer Overflow Vulnerabilities
HP OVIS Probe Builder Service (PBOVISServer.exe) Arbitrary Remote Process Termination
iTunes < 8.2 (Windows)
FTP Voyager Overflow
AxWebRemoveCtrl ActiveX Control Arbitrary Code Execution
Novell GroupWise Messenger Client < 2.0.3 HP1 Multiple Remote Overflows
RealPlayer ActiveX (ierpplug.dll) Playlist Handling Buffer Overflow
avast! Antivirus Server Edition Password Setting Weakness
MDaemon POP Server Multiple Command Remote Overflow DoS
QuickTime < 7.1.6 Security Update (Windows)
MERCUR Messaging < 2005 SP4 Multiple Remote DoS Vulnerabilities
Novell SecureLogin < 6.0.106 Multiple Vulnerabilities
Vulnerabilities in .NET Framework Could Allow Remote Code Execution (931212) (Network Check)
PowerArchiver paiso.dll ISO Image Handling Buffer Overflow
LANDesk Multiple Products QIP Server Service (qipsrvr.exe) Heal Request Packet Handling Overflow
Flash Player APSB07-20
Firefox 3.x < 3.0.5 Multiple Vulnerabilities
DCE Services Enumeration
Firefox < 1.0.3
WinSyslog Long Syslog Message Remote DoS
Detect the HTTP RPC endpoint mapper
F-Secure Archive Handling Vulnerabilities (FSC-2008-2)
NOD32 Antivirus ARJ Archive Handling Buffer Overflow Vulnerability
Flash Player APSB06-03
Wireshark / Ethereal < 1.0.3 Multiple Vulnerabilities
SonicWALL Global VPN Client < 4.0.0.830 Format String Vulnerabilities
Mozilla Thunderbird < 2.0.0.22
Winamp < 5.31 Multiple Buffer Overflow Vulnerabilities
LOP.COM detection
Microsoft RPC Interface Buffer Overrun (823980)
Safari < 3.2.3
Panda AdminSecure Communications Agent < 4.2 Packet Handling Remote Heap Overflow
Sun Java JDK/JRE 5 < Update 16 Multiple Vulnerabilities
CommuniGate Pro POP Service Empty Inbox Remote DoS
FLEXnet Connect Update Service Agent ActiveX (isusweb.dll) Overflow
Microsoft Windows RPC DCOM Interface epmapper Pipe Hijack Local Privilege Escalation
Outlook Express Multiple Vulnerabilities (900930)
Flash Player APSB07-12
Worldspan for Windows Gateway Res Manager Port 17990 Malformed Request DoS
QuickTime player/plug-in Heap overflow
Nessus Windows Scan not performed with admin privileges
QuickTime RTSP URL Handler Buffer Overflow (Windows)
SMB accessible registry
Mozilla Browser < 1.7.7
Symantec Anti Virus Corporate Edition Check
Cisco VPN Client Dialer Local Privilege Escalation
Mozilla Browser Network News Transport Protocol Remote Heap Overflow Vulnerability
ProgramChecker sasatl.dll ActiveX Control Multiple Overflow Vulnerabilities
Mozilla Foundation Application Detection
Adobe Download Manager Detection
Avira AntiVir PDF Scan Evasion
Firefox < 1.5.0.1
Vulnerability in Symantec AntiVirus could allow remote code execution (SYM06-010)
Symantec Backup Exec Multiple Heap Overflow Vulnerabilities
Opera < 8.02 Multiple Vulnerabilities
SMB Registry : Do not show the last user name
RealVNC VNC Viewer < 4.1.3/4.4.3 Arbitrary Command Execution
Firefox < 2.0.0.8
Sun Java Runtime Environment Multiple Vulnerabilities (233321-233327)
Mozilla Thunderbird < 2.0.0.5
Altiris Notification Server Agent Local Privilege Escalation Vulnerabilities
Sun Java Runtime Environment External XML Entities Restriction Bypass (231246)
Novell Client TS/Citrix Session Arbitrary User Profile Invocation
Firefox < 2.0.0.10
SNMPc < 7.1.1 UDP Packet Handling Buffer Overflow
IBM Tivoli Storage Manager HSM Client < 5.5.1.8 / 5.4.2.6
Trillian < 3.1.10.0 Multiple Vulnerabilities
SMB log in
CuteFTP multiple flaws (2)
Firefox < 3.0.8 Multiple Vulnerabilities
RoboHelp Server Multiple Cross-Site Scripting Vulnerabilities (APSB09-02 Update 2)
Flash Player APSB06-11
DrWeb Unspecified buffer overflow
EPolicy Orchestrator SiteManager ActiveX Control Buffer Overflow Vulnerabilities
Opera < 9.20 Multiple Vulnerabilities
Vulnerability in Server Service Could Allow Remote Code Execution (917159) - Network check
CA Secure Content Manager HTTP Gateway Service FTP Vulnerabilities
Mozilla Thunderbird < 1.5.0.14
Vulnerabilities in ASP.NET could allow information disclosure (922770) (network check)
Sophos Anti-Virus For Windows CAB File Scan Evasion Vulnerability
Altiris Deployment Solution Aclient Process (aclient.exe) Log File Viewer Local Privilege Escalation
RealPlayer File Handler Code Execution
Opera relative path directory traversal file corruption vulnerability
Firefox < 1.0.6
Sun Java Runtime Environment Privilege Escalation (231261)
Opera < 9.51 Multiple Vulnerabilities
FileZilla < 2.2.30a Buffer Overflow Vulnerabilities
QuickTime < 7.3 (Windows)
OpenOffice < 2.4 Multiple Vulnerabilities
ASN.1 Parsing Vulnerabilities (HTTP check)
Nullsoft Winamp .WSZ Overflow
Retrospect Backup Server Authentication Module Password Hash Weakness (ESA-08-009)
PFTP clear-text passwords
GEAR Software CD DVD Filter Driver Insecure Method Local Privilege Escalation
SMB Registry : missing winreg
WinGate POST Request Buffer Overflow
Akamai Red Swoosh < 3333 referer Header Cross-Site Request Forgery
DynaZip Zip Archive Handling Buffer Overflow Vulnerabilities
Lyris ListManager with MSDE Weak sa Password
HP Systems Insight Manager < 2.5.2.0 WMI Mapper Component Multiple Flaws
VMware ACE detection (Windows)
Firefox < 3.0.11 Multiple Vulnerabilities
Microsoft Hotfix for KB835732 (SMB check)
Safari < 3.2 Multiple Vulnerabilities
Bagle.B Detection
ImageMagick Detection
SonicWall Global VPN Client Detection
Microsoft Windows Server Message Block (SMB) Protocol SMB_COM_TRANSACTION Packet Remote Overflow DoS
MailEnable < 1.7 IMAP Server Multiple Vulnerabilities (ME-100008)
Altiris Deployment Solution Agent < 6.9.176 Multiple Local Vulnerabilities
Vulnerability in SAVCE could allow Local Privilege Escalation (SYM07-017)
Sophos Anti-Virus detection
Eserv Non Terminated Connection Saturation DoS
Bagle Worm Removal
Wireshark / Ethereal 0.99.2 to 1.0.6 Multiple Vulnerabilities
Multiple ICQ Vulnerabilities
Yahoo! Music Jukebox ActiveX Controls Buffer Overflow Vulnerabilities
CYDOOR detection
Winamp Malformed ID3v2 Tag Buffer Overflow Vulnerability
rfpoison
Microsoft Hotfix for KB835732 IIS SSL check
WINS Buffer Overflow (830352 - netbios check)
Ipswitch IMail Server IMAP LIST Command Remote Overflow DoS
IBM Lotus Notes / Domino Client Memory Mapped Files Privilege Escalation
Vulnerabilities in DHCP (885249) (network check)
Opera < 9.26 Multiple Vulnerabilities
RealPlayer for Windows < Build 6.0.12.1578
Autodesk IDrop ActiveX Control Heap Corruption
SeaMonkey < 1.1.3
Mozilla Thunderbird < 1.5.0.10
Google Chrome Detection (Windows)
Multiple flaws in the Opera web browser
Firefox < 2.0.0.5
CommuniGate Pro < 5.0.8 LDAP Module Field Handling Remote DoS
Foxit Reader Detection
Altiris AClient < 6.9.164 Multiple Local Vulnerabilities
eZ/eZphotoshare Connection Saturation Remote DoS
Symantec pcAnywhere CHF File Pathname Format String Denial of Service
Unsupported Windows NT 4.0 Installation
SMB fully accessible registry
Oracle JInitiator beans.ocx ActiveX Buffer Overflow Vulnerabilities
BIOS version (SMB)
ASN.1 Parsing Vulnerabilities (NTLM check)
Trend Micro VsapiNT.sys UPX File Parsing DoS
Domino Web Access ActiveX Control Buffer Overflow Vulnerabilities
BARGAINBUDDY Software Detection
MailEnable IMAP Service SEARCH Command Remote DoS
SeaMonkey < 1.0.7
QuickTime < 7.1.6 (Windows)
mIRC PRIVMSG Handling Remote Buffer Overflow
VERITAS NetBackup Volume Manager Daemon Buffer Overflow Vulnerability
I-Nav VUpdater.Install ActiveX Buffer Overflow
Morovia Barcode ActiveX Control < 3.6.0 Arbitrary File Overwrite
UltraVNC Viewer < 1.0.5.4 Multiple Integer Overflows
Vulnerability in Message Queuing Could Allow Remote Code Execution (937894) (Network check)
Sun Java Web Start Unauthorized Access (102881)
HP Software Update HPRulesEngine.ContentCollection ActiveX (RulesEngine.dll) Multiple Insecure Methods
Winamp < 5.541 NowPlaying Feature Metadata XSS
Husdawg System Requirements Lab Multiple ActiveX Remote Code Execution
DrWeb Folder Name Overflow
MailEnable Detection
Winamp3 buffer overflows
SeaMonkey < 1.0.9 / 1.1.2
BFTelnet Username Handling Remote Overflow DoS
InstallFromTheWeb ActiveX Control Buffer Overflow Vulnerabilities
Foxit Reader < 2.3 Build 2912 util.printf() Function PDF File Handling Overflow
Sun Java Enterprise Server NSS Remote Code Execution Vulnerabilities
FeedDemon < 2.0.0.25 Atom Feed Active Script Code Execution
Safari Detection (Windows)
Mozilla/Firefox code execution
VLC Media Player 0.9.x < 0.9.8a RealMedia Processing Remote Integer Overflow
Corel ActiveCGM Browser ActiveX (acqm.dll) Multiple Overflows
Plaxo Client Is Installed
ATI Catalyst Dynamic Driver (atidsmxx.sys) Local Privilege Escalation
wodSFTP ActiveX Arbitrary File Access
Winamp < 5.34 Multiple Vulnerabilities
Opera Empty Embedded Object DoS
RealPlayer / RealOne Player for Windows Multiple Vulnerabilities
Sun Java Runtime Environment Font Parsing Privilege Escalation (103024)
DameWare NT Utilities Authentication Credentials Persistence Weakness
Google Chrome < 2.0.172.31
Netscape Browser <= 8.0.3.3
SMB Registry : Winlogon caches passwords
WINS Code Execution (870763) (network check)
BitDefender Online Anti-Virus Scanner ActiveX OScan8.ocx / OScan8.ocx InitX Method Arbitrary Code Execution
SMB Registry : NT4 Service Pack version
MailMarshal tar Archive Traversal Arbitrary File Overwrite
Sun Java Web Start JNLP File Handling Overflow (102996)
Microsoft Shlwapi.dll Malformed HTML form tag DoS
CA eTrust Intrusion Detection CPImportKey Function Overflow DoS
Opera < 9.27 Multiple Vulnerabilities