Your Company Scan Results - April 2015

Company Reference:
YC 201135

Vulnerability Statistics

 23
 27
 16
 22
 1
 4		High risk vulnerabilities found.
Medium risk vulnerabilities found.
Low risk vulnerabilities found.
New vulnerabilities found.
Urgent vulnerabilities found.
Overdue vulnerabilities found. 		 10
 2
 0
 12
 8
 1
 3		Systems (50%) had high risk vulnerabilities.
Systems (10%) had medium risk vulnerabilities.
Systems (0%) had low risk vulnerabilities.
Systems (60%) had vulnerabilities.
Systems (40%) had no vulnerabilities.
Systems (5%) had urgent vulnerabilities.
Systems (15%) had overdue vulnerabilities.		 Scan Type
Start Date
End Date
Report Generated
Systems Scanned
New Systems 		Enterprise
13-Apr-15 11:54
16-Apr-15 16:32
01-Jul-15 15:33
20
2

Key Increase No change DecreaseHigh RiskMedium RiskLow RiskNo ServicesNo Ports/VulnsNot Subnet Scanned

Filter Hosts: 

 

Systems

Download As CSV...
Download As PDF...
Host NameIP AddressCriticalReportPortsVulnerabilities 
www.your_company.nl192.168.0.103View713 (7 New)
www.yourcompany.co.uk192.168.0.100View59 (5 New)
www.example.com192.168.0.112View311 (4 New)
dns0.example.com   OVERDUE192.168.0.110View55 (1 New)
mail.example.com   URGENT192.168.0.111View85
www.yourcompany.net192.168.0.102View25
sql1.manc.yourcompany.com   OVERDUE192.168.1.52View34
sql2.manc.yourcompany.com192.168.1.53View24
www.yourcompany.com   NEW192.168.0.101View122 (2 New)
www.your_company.fr192.168.0.105View53 (3 New)
apollo.example.com   OVERDUE192.168.0.81View33
www.yourcompany.com.my192.168.0.106View22
www1.manc.yourcompany.com192.168.1.54View20
www2.manc.yourcompany.com192.168.1.55View20
mail1.manc.yourcompany.com192.168.1.50View10
mail2.manc.yourcompany.com192.168.1.51View10
192.168.0.104192.168.0.104View20
gopher.example.com192.168.0.93View00
192.168.100.9   NEW192.168.100.9not setView10
laptop.yourcompany.com192.168.0.57not setView00

All Vulnerabilities

FrequencyVulnerabilitySeverity 
6High Risk Ports OpenHigh Risk
3SNMP Default Community NamesHigh Risk
2SSH Protocol Version 1 EnabledHigh Risk
1Administration Interface with Weak Password   NEWHigh Risk
1Apache < 1.3.26 Chunked Encoding VulnerabilityHigh Risk
1Authentication Bypass Through Cookie Manipulation   NEWHigh Risk
1BIND < 8.2.3 Buffer Overrun   OVERDUEHigh Risk
1IIS ASP.NET Application Trace Enabled   NEWHigh Risk
1IIS WebDAV Buffer OverrunHigh Risk
1MySQL Database Accessible Without Password   OVERDUEHigh Risk
1Possible Compromise   NEWHigh Risk
1Script Allows Arbitrary Command Execution   NEWHigh Risk
1Script Appears Vulnerable to SQL Injection   NEWHigh Risk
1Sendmail < 8.12.8 Buffer Overrun   URGENTHigh Risk
1Sensitive Information Leakage   NEWHigh Risk
3Globally Useable Name ServerMedium Risk
2Apache < 1.3.27 Multiple VulnerabilitiesMedium Risk
2Cross-Site ScriptingMedium Risk
2MySQL < 3.23.56 Privilege EscalationMedium Risk
2MySQL < 3.23.58, 4.0.15 Password OverflowMedium Risk
1Apache mod_ssl < 2.8.10 off by one VulnerabilityMedium Risk
1Apache < 1.3.31, 2.0.49 Multiple VulnerabilitiesMedium Risk
1DNS Zone Transfer   OVERDUEMedium Risk
1IIS global.asa AccessibleMedium Risk
1IIS .printer ISAPI Filter EnabledMedium Risk
1Lotus Domino Anonymous Database AccessMedium Risk
1Lotus Domino < 5.0.9 Database Lock DoSMedium Risk
1MySQL < 3.23.55 Multiple VulnerabilitiesMedium Risk
1OpenSSH < 3.6.1p2 PAM Timing AttackMedium Risk
1OpenSSL < 0.9.6m, 0.9.7d SSL/TLS Handshake Denial of ServiceMedium Risk
1Script Allows Arbitrary Redirection   NEWMedium Risk
1Service Permits Unauthenticated Users to Send Arbitrary Emails   NEWMedium Risk
1SMTP Server Allows VRFY/EXPNMedium Risk
1SSL Certificate Problems   NEWMedium Risk
1Weak or Ineffective Authentication Mechanism   NEWMedium Risk
1XPath Injection   NEWMedium Risk
4Holes Detected in Firewall ConfigurationLow Risk
3TRACE and/or TRACK Methods EnabledLow Risk
2Apache < 1.3.29 Multiple Local FlawsLow Risk
2DNS Cache SnoopingLow Risk
1Apache mod_userdir Information LeakLow Risk
1Microsoft Frontpage Extensions InstalledLow Risk
1NTP Information Leakage   NEWLow Risk
1Private IP Address LeakageLow Risk
1Script Calling phpinfo() Detected   OVERDUELow Risk

Scans by RatwareUK