Your Company Detailed Scan Results - April 2003

Host 192.168.0.81 ( http://apollo.example.com )
Scan Type Enterprise
Start Date 02-Jun-04 16:31
End Date 13-Apr-03 13:47
Customer Ref XG129
Contact E-mail Role
manager@yourcompany.com Business
joe.bloggs@technicians.com Technical

Open Ports Found: 3 (High:0 Low:3)

  Port No Protocol Service Details  
  80 tcp http Apache/1.3.29 (Unix) mod_ssl/2.8.16 OpenSSL/0.9.7c PHP/4.3.4  
  443 tcp https Certificate name 'apollo.example.com' does not match hostname  
  10000 tcp snet-sensor-mgmt <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN""http://www.w3.org/TR/REC-html40/loose.dtd"><html><head>  

Vulnerabilities Found: 3 (High:0 Medium:1 Low:2)

Vulnerability 12110 OpenSSL < 0.9.6j, 0.9.7d Denial of Service Medium Risk
Description According to its banner, the remote OpenSSL service is vulnerable to a denial of service attack. A remote attacker with no authentication can crash the service by conducting a deliberately invalid SSL/TLS handshake.  
Solution Upgrade to OpenSSL 0.9.6j or 0.9.7d to apply a patch.  
References Bugtraq 9899    CAN-2004-0079    CAN-2004-0081    CAN-2004-0112   
First Found 12 December 2002 Port 443/tcp Last 6 Months

Vulnerability 10766 Apache UserDir information leak Low Risk
Description An information leak occurs on Apache based web servers whenever the UserDir module is enabled. A request to a non-existant user (e.g. http://server.com/~notauser/) returns a 404 code. A similar request to a user with no web page returns a 403 code. This allows an attacker to determine which user accounts exist.  
Solution mod_rewrite provides a way to get the UserDir functionality without the leak 
References CAN-2001-1013    SecuriTeam advisory   
First Found 12 December 2002 Port 443/tcp Last 6 Months

Vulnerability 11229 Script Calling phpinfo() Detected Low Risk
Description PHP contains a function called phpinfo() that dumps a significant amount of system and configuration information that may be useful to an attacker. An unprotected script that calls this function has been detected. You can see the information using the following URL:
https://192.168.0.81/phpinfo.php
 
Solution Remove this script, or protect it with some kind of authentication.  
First Found 12 December 2002 Port 443/tcp Last 6 Months


Historical Information

Scans by Clearview Systems