![]() |
|
|
| Test Case Name |
| Ping of Death Vulnerability | ||
| Jolt or Ssping or Ping of Death 2 | ||
| Smurf Attack Vulnerability | ||
| TCP Chorusing Vulnerability | ||
| XTACACS Crash Vulnerability | ||
| Computer Associates eTrust Intrusion Detection System DoS Vulnerability | ||
| Windows System Vulnerable to Packets with Invalid IGMP Header | ||
| ICMP Timestamp Reply Vulnerability | ||
| ICMP Netmask Reply Vulnerability | ||
| Incorrect System Clock Vulnerability | ||
| Smurf Amplifier Vulnerability | ||
| Cisco IOS ICMP Redirect Denial Of Service Vulnerability | ||
| ARP Promiscuous Mode Over Network Detection Vulnerability | ||
| Microsoft PPTP Server Buffer Overflow Vulnerability | ||
| Ethernet Frame Padding Information Leakage Vulnerability | ||
| Cisco IOS EIGRP Network Denial of Service Vulnerability | ||
| PPTP Server Version Disclosure Vulnerability | ||
| Traceroute Is Possible | ||
| Exchange NNTP DoS | ||
| NNTP Unauthenticated Posting Allowed Vulnerability | ||
| DoS Attack in CASSANDRA NNTP Server | ||
| Inter Net News Server (INN) Buffer Overflow Vulnerability | ||
| ISC innd 2.x Remote Buffer Overflow Vulnerability | ||
CVE-1999-0644 |
NNTP Available Banner Vulnerability | |
| NNTP Reading is Possible Vulnerability | ||
| LAND Attack Vulnerability | ||
| Winnuke - Incorrect Out of Band Data Processing Vulnerability | ||
| Cisco Device Identification Vulnerability | ||
| Uucp Daemon is Running | ||
| Netbus Backdoor Vulnerability | ||
| SYN/RST Attack Vulnerability | ||
| CISCO IOS Software Outdated Vulnerability | ||
| Cisco IOS 11.3(1.2) and 11.3(1.2)T AAA Failure (cisco-sa-19980122-aaapair) | ||
| inetd Crash Through TCPMUX | ||
| tcpmux is Enabled | ||
| auth/tcp (ident protocol) Service Enabled Vulnerability | ||
| Backdoor program Remote Windows Shutdown (RWS) | ||
| Access Point Web-browser Interface Vulnerability (cisco-sa-20060628-ap) | ||
| Cisco VPN 3000 Concentrator Vulnerable to Crafted HTTP Attack (cisco-sa-20060126-vpn) (CSCsb77324) | ||
| Linux 2.0.35 TCP Spoofing Vulnerability | ||
| OpenBSD 2.4 Remote Crash Vulnerability | ||
| oshare Attack Vulnerability | ||
| jolt2 (IP fragment reassembly flaw) Attack Vulnerability | ||
| Linux 2.2.x DoS Through Bad IP Options Vulnerability | ||
| Darxite 0.4 Login Buffer Overflow Vulnerability | ||
| Microsoft Windows 2000 Domain Controller DoS Vulnerability | ||
| Cisco VPN 3000 Concentrator Vulnerable to Crafted HTTP Attack (cisco-sa-20060126-vpn) (CSCsd26340) | ||
| NT Predictable TCP Sequence Number Vulnerability | ||
| LDAP Null Base | ||
| Alcatel Speed Touch Pro ADSL Insecure Embedded TFTP Server Vulnerability | ||
| Cisco Router Password Not Set Vulnerability | ||
| Cisco Routers HTTP %% All Versions Vulnerability (cisco-sa-20000514-ios-http-server) | ||
| TCP Fixed Initial Sequence Number Vulnerability | ||
| Microsoft Site Server LDAP Accounts/Passwords Disclosure Vulnerability | ||
| Microsoft Windows 2000 Lanman Denial of Service Vulnerability | ||
| OpenSSH Channel Code Off-By-One Vulnerability | ||
CVE-2002-0640 |
OpenSSH/SKEY/BSD_AUTH Authentication Overflow Vulnerability | |
| OpenSSH/PAM Challenge Response Buffer Overflow Vulnerability | ||
CVE-2002-0655 CVE-2002-0656 CVE-2002-0659 CVE-1999-0428 |
OpenSSL Multiple Buffer Overflows Vulnerabilities | |
| Microsoft Windows RPC Service Denial of Service Vulnerability (DOS) | ||
| Microsoft Data Access Components Buffer Overflow Vulnerability (Q329414) | ||
| SSH Communications SSH Server Privilege Escalation Vulnerability | ||
| SSL Server Allowing Weak Ciphers Vulnerability | ||
| SSL Server Outdated Certificate Vulnerability | ||
CVE-2002-1358 CVE-2002-1359 CVE-2002-1360 |
SSH2/1 Multiple Implementation Vulnerabilities | |
| MySQL Database Server Default Password Vulnerability | ||
| SQLBase Database Server Default Password Vulnerability | ||
| SyBase SQL Anywhere Server Default Password Vulnerability | ||
| Multiple Vendor Kerberos 4 TGT/AFS Token Buffer Overflow Vulnerability | ||
| Pervasive SQL Server Default Password Vulnerability | ||
| Timing-based Attacks on SSL/TLS with CBC Encryption Vulnerability | ||
| Novell Netware /SYS Files Uploading Vulnerability | ||
| Novell Netware Resources Information Disclosure Vulnerability | ||
| Oracle TNS Listener is Running | ||
| Oracle TNS Listener No Password Vulnerability | ||
| Netware Object Enumeration via NCP Vulnerability | ||
| SSHD-1 Logging Vulnerability | ||
| OpenSSH PKCS #1 Version 1.5 Session Key Retrieval Vulnerability | ||
CVE-2003-0147 |
OpenSSL PKCS #1 Version 1.5 Session Key Retrieval and RSA blinding Vulnerability | |
| SSH Secure-RPC Weak Encrypted Authentication Vulnerability | ||
| OpenSSL PRNG Internal State Disclosure Vulnerability | ||
| TCP/IP Flag Combination Inconsistence Vulnerability | ||
| OpenSSH Restricted IP Login Vulnerability | ||
| Oracle Database Server Banner Exposure | ||
| Apache mod_ssl/Apache-SSL Buffer Overflow Vulnerability | ||
| Cisco IOS Interface Blocked by IPv4 Packets (cisco-sa-20030717-blocked) | ||
| Clock Based TCP ISN Vulnerability | ||
| OpenSSH PAM Session Evasion Vulnerability | ||
CVE-2003-0695 |
OpenSSH buffer_append_space Buffer Overflow Vulnerability | |
CVE-2003-0787 |
OpenSSH PAM Challenge Authentication Vulnerability | |
CVE-2003-0544 |
OpenSSL ASN.1 and Invalid Public Key Vulnerabilities | |
| OpenSSL Double free() Vulnerability | ||
| 64k Rule Based TCP ISN Vulnerability | ||
| Oracle9i Database Multiple Buffer Overflow Vulnerabilities | ||
| OpenSSL Null-pointer assignment during SSL handshake | ||
| OpenSSL Out-of-bounds read affects Kerberos ciphersuites | ||
| Microsoft SSL library DoS and Remote Code Execution (MS04-011/835732) (SSL Safe Check on HTTP) | ||
| Microsoft SSL library DoS and Remote Code Execution (MS04-011/835732) (SSL Safe Check on LDAP) | ||
| Oracle9i Application Server Web Cache Heap-based buffer overflow Vulnerability | ||
| Microsoft SQL Server Monitor Buffer Overflow Vulnerability (ssnetlib.dll version check) | ||
| Microsoft SQL Server Multiple Unchecked Buffer Vulnerabilities (ssnetlib.dll version check) | ||
| IOS Stack Group Bidding Protocol Crafted Packet DoS (cisco-sa-20060118-sgbp) | ||
CVE-2002-0645 |
Microsoft SQL Server Utilities Unchecked Buffer Vulnerability (ssnetlib.dll version check) | |
| Microsoft SQL Server Weak Permissions For Extended Stored Procedures Vulnerability (ssnetlib.dll version check) | ||
| Access Point Memory Exhaustion from ARP Attacks (cisco-sa-20060112-wireless) | ||
| PostgreSQL Database is not password protected | ||
| PostgreSQL Database Version Disclosure | ||
CVE-2006-2314 |
PostgreSQL Multibyte Character Encoding SQL Injection Vulnerabilities | |
| PostgreSQL path_add() Buffer Overrun Vulnerability | ||
| PostgreSQL path_encode() Buffer Overflow Vulnerability | ||
| PostgreSQL To_Ascii() Buffer Overflow Vulnerability | ||
| PostgreSQL Aggregate Function EXECUTE Restriction Bypass | ||
| PostgreSQL refcursor function arbitrary code execution | ||
| PostgreSQL intagg contrib module denial of service Vulnerability | ||
| PostgreSQL Multiple buffer overflows in gram.y arbitrary code execution Vulnerability | ||
| PostgreSQL Set Session Authorization Denial of Service Vulnerability | ||
| PostgreSQL LOAD Extension Local Privilege Escalation Vulnerability | ||
| PostgreSQL Remote SET ROLE Privilege Escalation Vulnerability | ||
| PostgreSQL Postmaster Denial Of Service Vulnerability | ||
| PostgreSQL errors in the cryptographic library | ||
| Cisco Security Advisory: Vulnerability in Cisco IOS Embedded Call Processing Solutions (cisco-sa-20050119-itscme) | ||
CVE-2006-0486 |
Cisco IOS Response to AAA Command Authorization by-pass (cisco-sr-20060125-aaatcl) | |
| OpenSSL RSA Signature Forgery Vulnerability | ||
| OpenSSL Potential SSL 2.0 Rollback Vulnerability | ||
| Cisco VPN 3000 Concentrator FTP Management Vulnerabilities (cisco-sa-20060823-vpn3k) | ||
| OpenSSL error in the processing of certain invalid ASN.1 structures leading to system resources consumption Vulnerability | ||
| OpenSSL overly long time taken to process certain types of public keys leading to Denial of Service Vulnerability | ||
| OpenSSL error in the "SSL_get_shared_ciphers()" function, code execution Vulnerability | ||
| OpenSSL error in the SSLv2 client code to crash a vulnerable client Vulnerability | ||
| OpenSSH Signal Handling Vulnerability | ||
| OpenSSH usernames validity determination Vulnerability | ||
| SSL Server invalid CN in Certificate Vulnerability | ||
| SSL Server untrusted Root certificate Vulnerability | ||
| SSL Server Revoked Certificate or Signature Vulnerability | ||
| SSL Server validity periods of the certification chain not nesting correctly Vulnerability | ||
| SSL Server Outdated SSL protocol version Vulnerability | ||
| PostgreSQL Denial of Service and Information Disclosure Vulnerabilities | ||
| PostgreSQL changing data type of a table column, Denial of Service and Information Disclosure Vulnerabilities | ||
| PostgreSQL SECURITY DEFINER Functions Privilege Escalation Vulnerability | ||
| OpenSSH scp Command Line Shell Command Injection Vulnerability | ||
| OpenSSH X11 Forwarding Information Disclosure Vulnerability | ||
| OpenSSH ForceCommand Bypass Weakness | ||
| SSL supported protocol versions | ||
| OpenSSH "X11UseLocalhost" X11 Forwarding Security Issue | ||
| OpenSSH Authentication Implementation Error Vulnerability | ||
| OpenSSH "Memory bugs" Vulnerabilities | ||
| OpenSSH SCP Client File Corruption Vulnerability | ||
| OpenSSH Remote Root Authentication Timing Side-Channel Weakness | ||
| OpenSSH LoginGraceTime Remote Denial Of Service Vulnerability | ||
| OpenSSH Address Harvesting Vulnerability | ||
| OpenSSH S/Key Remote Information Disclosure Vulnerability | ||
| OpenSSH X11 Cookie Local Authentication Bypass Vulnerability | ||
| Teardrop Vulnerability | ||
| UDP Data Flood Vulnerability | ||
| Nestea Attack | ||
| Bonk or New Teardrop or Boink Attack | ||
| Fraggle Attack (smurf cousin) | ||
| Syslogd Unauthorized Used Vulnerability | ||
| Comsat Flooding Vulnerability | ||
| Rwhod Active Exposure | ||
| FSP Daemon Running Vulnerability | ||
| Back Orifice Backdoor Program Vulnerability | ||
| Back Orifice 2000 Backdoor Program Vulnerability | ||
| EFNet ircd DoS Vulnerability | ||
CVE-1999-0892 CVE-1999-1262 CVE-1999-1357 CVE-2001-0596 |
Outdated Netscape Version Vulnerability | |
CVE-1999-0347 CVE-1999-0488 CVE-1999-0031 CVE-1999-0869 CVE-1999-0870 CVE-1999-0871 CVE-1999-0876 CVE-2000-0439 |
Internet Explorer Outdated Vulnerability | |
| Oracle E-Business Suite Multiple Non-descript SQL Injection Vulnerability | ||
| imapd DoS on IMail 5.0 Vulnerability | ||
| IMonitor DOS on IMail 5.0 Vulnerability | ||
| Whois32 Daemon Overflow Message Vulnerability | ||
| XtraMail 1.11 Control Service DoS Vulnerability | ||
| Administrative Control Service Mercur Mail Server Dos Vulnerability | ||
| Catalyst Remote Supervisor Module Reload Vulnerability | ||
| CiscoSecure Access Control Server for UNIX Remote Administration Vulnerability (cisco-sa-19990819-dbaccess) | ||
| Cfingerd User Enumeration Via Search Vulnerability | ||
| Cfingerd Outdated Version Vulnerability | ||
| Ascend Router Crash Vulnerability | ||
| SuSE In.identd DoS Vulnerability | ||
| MDBMS Buffer Overflow Vulnerability | ||
| OpenSSH <2.1 "UseLogin" Vulnerability | ||
| FreeBSD SSH Port Misconfiguration Vulnerability | ||
| Inetserv Webmail DoS Vulnerability | ||
| HP Openview Network Node Manager Alarm Service Buffer Overrun Vulnerability | ||
| IRIX Performance Copilot Enabled Vulnerability | ||
| SGI Objectserver Running Vulnerability | ||
| Infopulse Gatekeeper Buffer Overflow Vulnerability | ||
| Microsoft SQL Server Malformed TDS Packet DoS Vulnerability | ||
| WorldView Wnn Jserver Remote Buffer Overflow Vulnerability | ||
| Microsoft NT RAS/PPTP Malformed Control Packet Denial of Service Attack | ||
| Netscape Collabra Malformed Data DoS Vulnerability | ||
| SSH Secure Shell Denial of Service Vulnerability | ||
| WircSrv IRC Server Character Flood Denial of Service Vulnerability | ||
| Netopia Timbuktu Pro 2.0 DoS Vulnerability | ||
| Windows 2000 Kerberos LSA Memory Leak/DoS Vulnerability | ||
| ElectroSoft ElectroComm Denial of Service Vulnerability | ||
| Cisco TFTPD Server 1.1 Directory Traversal Vulnerability | ||
| Checkpoint Firewall-1 Valid Username Vulnerability | ||
CVE-2000-0937 |
SWAT (Samba Web Administration Tool) Server Detected | |
| Checkpoint SecureRemote Detection | ||
| CheckPoint Firewall-1 is Running Exposure | ||
| AT&T VNC Service Available | ||
| SSH Information Obtained | ||
| Multiple Vendor Telnetd Buffer Overflow Vulnerability | ||
| rwhod Buffer Overflow Vulnerability | ||
| PC Anywhere Detected Vulnerability | ||
| SSH Short Password Login Vulnerability | ||
| SSH CRC-32 Compensation Attack Detector Vulnerability | ||
| EFTP File Existence Vulnerability | ||
| OpenSSH Key Based Source IP Access Control Bypass Vulnerability | ||
| Fraggle ( Smurf Cousin ) Attack Amplifier Vulnerability | ||
| kpasswd Unexpected Response Vulnerability | ||
| TFTP Long Filename Vulnerability (cisco-sa-20020730-ioc-tftp-lfn) | ||
| SolarWinds TFTP Server Directory Traversal Vulnerability | ||
| SolarWinds TFTP Server Large UDP Packet DoS Vulnerability | ||
| HP LaserJet Opened Port 9099 | ||
| HP LaserJet Opened Port 9100 | ||
| HP LaserJet can be configured remotely | ||
| Printer Service Enabled | ||
| systat/tcp is Running | ||
| netstat/tcp is Running | ||
| systat/udp is Running | ||
CVE-2004-0416 CVE-2004-0417 CVE-2004-0418 |
CVS Multiple Vulnerabilities | |
| CVS Entry Line Heap Overflow Vulnerability | ||
| Finger Bomb Vulnerability | ||
| NT / Windows 2000 TCP/IP Printing Service DoS Vulnerability | ||
| talk Service Active | ||
CVE-2000-0885 |
Microsoft Network Monitor Multiple Buffer Overflow Vulnerabilities | |
| Windows NT 4.0 help file Buffer overflow vulnerability | ||
| Windows NT RAS Client Buffer Overflow Vulnerability | ||
| Windows NT CSRSS Denial of Service | ||
CVE-1999-0106 |
Finger Allows Recursive Queries Vulnerability | |
| Microsoft SQL Server Blank Password Vulnerability | ||
| Solaris in.fingerd Information Disclosure Vulnerability | ||
| Finger Account Information Disclosure | ||
| Windows XP/ME UPnP Denial Of Service Vulnerability | ||
| CVS Path Validation Vulnerabilities | ||
| X11 Server Unauthenticated Session Vulnerability | ||
| X11 Server Is Present Vulnerability | ||
| Multiple Vendor CDE dtspcd Buffer Overflow Vulnerability | ||
| Microsoft SQL Server Exception Access Violation DOS Vulnerability | ||
| Microsoft SQL Server Weak Authentication Vulnerability | ||
| Microsoft SQL Server Monitor 0X04 Buffer Overflow Vulnerability | ||
CVE-2002-0729 |
Microsoft SQL Server Monitor 0X08 Buffer Overflow Vulnerability | |
| Microsoft SQL Server Monitor 0X0A DOS Vulnerability | ||
| Microsoft SQL Server Hello Buffer Overflow Vulnerability (ssnetlib.dll version check) | ||
| TFTPD32 Arbitrary File Download/Upload Vulnerability | ||
| TFTPD32 Long Filename Buffer Overflow Vulnerability | ||
| Jounin TFTP AUX DOS Vulnerability | ||
CVE-2002-1374 CVE-2002-1375 CVE-2002-1373 |
Multiple MySQL Vulnerabilities | |
| Double-free MySQL Vulnerability | ||
| MySQL mysqld Privilege Escalation Vulnerability | ||
| CUPS Negative Length HTTP Header Vulnerability | ||
| CUPS Cupsd Partial Request Denial Of Service Vulnerability | ||
| Solaris X Font Service Buffer Overflow | ||
| NetWin SurgeLDAP Path Disclosure Vulnerability | ||
| NetWin SurgeLDAP User.CGI Cross-Site Scripting Vulnerability | ||
| NetWin SurgeLDAP Denial Of Service Vulnerability | ||
| OptiSoft Blubster Remote Denial of Service Attack Vulnerability | ||
| Emule Remote Denial of Service Vulnerability | ||
CVE-2002-0315 CVE-2003-0397 |
Kazaa Installation Detected on Host Vulnerability | |
| Morpheus Installation Detected on Host Vulnerability | ||
| Shareaza Installation Detected Vulnerability | ||
| Overnet Installation Detected Vulnerability | ||
CVE-2002-0321 CVE-2002-0031 CVE-2002-0032 CVE-2002-0322 |
Yahoo! Messenger Installation Detected Vulnerability | |
CVE-2004-0628 |
MySQL Remote Users Bypass Authentication | |
| MySQL Buffer Overflow in mysql_real_connect() Vulnerability | ||
| SARAd Buffer Overflow Vulnerability | ||
CVE-1999-1440 CVE-2000-0046 CVE-2000-0564 CVE-2000-0552 CVE-2001-0367 CVE-2002-0028 CVE-2001-1305 |
ICQ Installed (Remote File Checking) | |
| Oracle Database Server dbms_system.ksdwrt Buffer Overflow Vulnerability | ||
| Skype Installed (Remote File Checking) | ||
| AOL Instant Messenger (AIM) Installed (Remote File Checking) | ||
| AOL Instant Messenger aim:goaway URI Handler Buffer Overflow Vulnerability (Remote File Checking) | ||
| Skype "callto://" URI Handler Buffer Overflow Vulnerability (Remote File Checking) | ||
| Oracle Database Server - Networking component boundary error (jan-2005/DB01) | ||
| Oracle Database Server - LOB Access component unspecified error (jan-2005/DB02) | ||
| Oracle Database Server - Spatial component unspecified error (jan-2005/DB03) | ||
| Oracle Database Server - UTL_FILE component unspecified error (jan-2005/DB04) | ||
| Oracle Database Server - Diagnostic component unspecified error (jan-2005/DB05) | ||
| Oracle Database Server - XDB component unspecified error (jan-2005/DB06) | ||
| Oracle Database Server - XDB component unspecified error (jan-2005/DB07) | ||
| Oracle Database Server - XDB component unspecified error (jan-2005/DB08) | ||
| Oracle Database Server - Dataguard component unspecified error (jan-2005/DB09) | ||
| Oracle Database Server - Log Miner component unspecified error (jan-2005/DB10) | ||
| Oracle Database Server - OLAP component unspecified error (jan-2005/DB11) | ||
| Oracle Database Server - Data Mining component unspecified error (jan-2005/DB12) | ||
| Oracle Database Server - Advanced Queuing component unspecified error (jan-2005/DB13) | ||
| Oracle Database Server - Change Data Capture component unspecified error (jan-2005/DB14) | ||
| Oracle Database Server - Change Data Capture component unspecified error (jan-2005/DB15) | ||
| Oracle Database Server - Database Core component component unspecified error (jan-2005/DB16) | ||
| Oracle Database Server - OHS component unspecified error (jan-2005/DB17) | ||
CVE-2005-0473 |
Gaim Installed (Remote File Checking) | |
| MySQL mysql_create_function function Vulnerability | ||
| MySQL "CREATE TEMPORARY TABLE" command Vulnerability | ||
| MySQL MS-DOS Device Names Denial of Service Vulnerability | ||
| RIP Routed Trace File Creation Vulnerability | ||
| RIP Query Accepted Vulnerability | ||
| RIP Spoofing Vulnerability | ||
| RealOne Player / RealPlayer / Helix Player Multiple Vulnerabilities (Remote File Checking) | ||