RELAYTO Penetration Test Results (25/101)

Pass Samsung / Dell Printer SNMP Backdoor CVE-2012-4964 03 Dec 2012 7.5 (v2) High Pass NetIQ Privileged User Manager ldapagnt_eval() Function Remote Code Execution (version check) CVE-2012-5932 07 Dec 2012 10 (v2) Critical Pass Trapeze Service Shell - Admin Service Accessible 22 Oct 2009 7.5 (v2) High Pass OpenSSL < 0.9.8y Multiple Vulnerabilities CVE-2013-0166 CVE-2013-0169 09 Feb 2013 2.6 (v2) Low Pass OpenX install.php / install-plugin.php Admin Authentication Bypass CVE-2009-4830 12 Jan 2010 7.5 (v2) High Pass Prizm Content Connect default.aspx document Parameter Remote File Inclusion CVE-2012-5190 19 Feb 2013 7.5 (v2) High Pass ManageEngine Log360 < Build 5235 Database Conﬁguration Overwrite RCE CVE-2021-20136 19 Nov 2021 9.8 (v3) Critical Pass SilverNews < 2.0.4 Multiple Vulnerabilities CVE-2005-2478 08 Aug 2005 7.5 (v2) High Pass Cisco TelePresence CVE-2013-3378 Software Malformed SIP Packet Handling Remote DoS CVE-2013-3378 24 Jul 2013 7.8 (v2) High Pass OpenSSH With OpenPAM DoS CVE-2006-0883 04 Oct 2011 5 (v2) Medium Pass OCS Inventory NG Server Administration Console header.php login Parameter SQL Injection 04 Feb 2010 7.5 (v2) High Pass McAfee ePolicy Orchestrator < 4.6.7 Multiple XSS CVE-2013-4883 17 Jul 2013 4.3 (v2) Medium Pass IBM WebSphere Application Server 6.1 < 6.1.0.13 Multiple Vulnerabilities CVE-2007-5798 CVE-2007-5799 CVE-2007-6679 05 Apr 2010 10 (v2) Critical Pass IBM WebSphere Application Server 8.5 < Fix Pack 8.5.5 Multiple Vulnerabilities CVE-2013-0169 CVE-2013-0482 CVE-2013-0597 CVE-2013-1768 CVE-2013-2967 CVE-2013-2975 CVE-2013-2976 CVE-2013-3024 23 Jul 2013 7.5 (v2) High Pass CGI Generic XML Injection 30 Apr 2010 6.8 (v2) Medium Pass TaskFreak! Default Credentials 03 May 2010 7.5 (v2) High Pass toendaCMS < 0.6.2.1 Multiple Vulnerabilities CVE-2005-3550 CVE-2005-3551 CVE-2005-4422 08 Nov 2005 6.5 (v2) Medium Pass Dell OpenManage Server Administrator 'HelpViewer' Redirect 26 May 2010 4.7 (v3) Medium Pass Novell Teaming Default Credentials 20 Jul 2010 7.5 (v2) High Pass Yahoo Messenger Detection 14 Jan 2004 None Pass Citrix NetScaler Authentication Bypass Vulnerability (CTX227928) CVE-2017-14602 26 Sep 2017 7.2 (v3) High Pass D-Link DCC Protocol Security Bypass 06 Jul 2010 8.3 (v2) High Pass HP Systems Insight Manager logﬁle Parameter Arbitrary File Download CVE-2010-3286 26 Oct 2010 7.8 (v2) High Pass Unprotected QNX qconn Service 17 Aug 2010 10 (v2) Critical Pass CGI Generic On Site Request Forgery (OSRF) 26 Jul 2010 4.3 (v2) Medium Pass Quote of the Day (QOTD) Service Detection CVE-1999-0103 30 Nov 1999 6.5 (v3) Medium Pass Adobe ColdFusion login.cfm Query String XSS (APSB11-04) CVE-2011-0580 11 Feb 2011 4.3 (v2) Medium Pass Nagios XI < 2009R1.3B Multiple Unspeciﬁed XSS 06 Oct 2010 4.3 (v2) Medium Pass OpenSSH < 2.1.1 UseLogin Local Privilege Escalation CVE-2000-0525 10 Jun 2000 7.2 (v2) High Pass Default Password (changeme) for SHOUTcast Server Service Port 18 Feb 2008 7.5 (v2) High Pass OpenSSH 2.5.x - 2.9 Multiple Vulnerabilities CVE-2001-0816 CVE-2001-1380 28 Sep 2001 7.5 (v2) High Pass MikroTik RouterOS with Blank Password (telnet check) CVE-1999-0508 11 Feb 2008 10 (v2) Critical Pass Mura CMS link Parameter XSS 30 Sep 2010 4.3 (v2) Medium Pass Novell eDirectory eMBox Utility Unauthorized Access (uncredentialed check) CVE-2008-0926 11 Apr 2008 8.8 (v2) High Pass Asterisk IAX2 Multiple Method Handshake Spooﬁng DoS CVE-2008-1897 CVE-2008-1923 06 May 2008 5 (v2) Medium Pass IBM WebSphere Application Server < 6.1.0.29 Multiple Vulnerabilities CVE-2009-2746 CVE-2009-2747 CVE-2009-2748 31 Oct 2011 6.8 (v2) Medium Pass Resin viewﬁle Servlet ﬁle Parameter XSS CVE-2008-2462 30 Jun 2008 4.3 (v2) Medium Pass op5 Monitor Persistent Session Cookie CVE-2012-0264 17 Jan 2012 5 (v2) Medium Pass Dropbear SSH Server Channel Concurrency Use-after-free Remote Code Execution CVE-2012-0920 01 Mar 2012 7.1 (v2) High Pass Novell eDirectory < 8.7.3 SP10 FTF1 Multiple Vulnerabilities CVE-2008-4478 CVE-2008-4479 CVE-2008-4480 07 Oct 2008 10 (v2) Critical Pass Simple PHP Blog conﬁg/users.php Arbitrary User Password Hash Disclosure 08 Sep 2008 5 (v2) Medium Pass Web Server Uses Basic Authentication Without HTTPS 21 Nov 2008 2.6 (v2) Low Pass IBM Tivoli Storage Manager Client Multiple Vulnerabilities (swg21268775) CVE-2007-4880 CVE-2007-5022 25 Sep 2007 10 (v2) Critical Pass OpenSSL < 0.9.8u Multiple Vulnerabilities CVE-2006-7250 CVE-2011-4619 CVE-2012-0884 CVE-2012-1165 02 Apr 2012 5 (v2) Medium Pass IBM WebSphere Application Server 7.0 < Fix Pack 21 Multiple Vulnerabilities CVE-2011-1376 CVE-2011-1377 CVE-2011-4889 04 Apr 2012 4.6 (v2) Medium Pass Apache Log4j Message Lookup Substitution RCE (Log4Shell) (Direct Check) CVE-2021-44228 10 Dec 2021 10 (v3) Critical Pass Oracle GlassFish Server 3.1.1 < 3.1.1.3 Multiple Vulnerabilities (April 2012 CPU) CVE-2012-0550 CVE-2012-0551 24 Apr 2012 9.3 (v2) High Pass Novell GroupWise MTA Web Console Accessible 21 Feb 2009 7.5 (v2) High Pass SIP Script Remote Command Execution via log4shell CVE-2021-44228 12 Dec 2021 10 (v3) Critical Pass VMware vCenter Log4Shell Direct Check (CVE-2021-44228) (VMSA-2021-0028) CVE-2021-44228 13 Dec 2021 10 (v3) Critical Pass SLMail HELO Command Remote Overﬂow CVE-1999-0284 22 Jun 1999 7.5 (v2) High Pass EMC RepliStor < 6.2 SP5/6.3 SP2 Multiple Heap Overﬂows CVE-2009-1119 29 Apr 2009 10 (v2) Critical Pass Apache Log4Shell RCE detection via Raw Socket Logging (Direct Check) CVE-2021-44228 14 Dec 2021 10 (v3) Critical Pass MS09-053: Microsoft IIS FTPd NLST Command Remote Buﬀer Overﬂow (975191) (uncredentialed check) CVE-2009-3023 13 Oct 2009 10 (v2) Critical Pass MS09-050: Microsoft Windows SMB2 _Smb2ValidateProviderCallback() Vulnerability (975497) (EDUCATEDSCHOLAR) (uncrCVE-2009-2532 CVE-2009-3103edentialed check) 08 Sep 2009 9.8 (v3) Critical Pass VICIDIAL Call Center Suite Default Administrative Credentials 26 May 2009 7.5 (v2) High Pass CGI Generic Header Injection 19 Jun 2009 4.3 (v2) Medium Pass CGI Generic Command Execution 19 Jun 2009 7.5 (v2) High Pass Apache Log4Shell RCE detection via callback correlation (Direct Check FTP) CVE-2021-44228 16 Dec 2021 10 (v3) Critical Pass Apache Log4Shell RCE detection via callback correlation (Direct Check SMTP) CVE-2021-44228 17 Dec 2021 10 (v3) Critical Pass Apache Log4Shell RCE detection via callback correlation (Direct Check Telnet) CVE-2021-44228 17 Dec 2021 10 (v3) Critical Pass IBM WebSphere Application Server 7.0 < Fix Pack 7 CVE-2009-2746 CVE-2009-2747 CVE-2009-2748 CVE-2009-3106 13 Nov 2009 5.8 (v2) Medium Pass NTP ntpd Mode 7 Error Response Packet Loop Remote DoS CVE-2009-3563 14 Dec 2009 6.4 (v2) Medium Pass Kuang2 the Virus Detection 17 Feb 2000 10 (v2) Critical Pass NTMail3 Arbitrary Mail Relay 22 Jun 1999 7.5 (v3) High Pass OpenSSH X11UseLocalhost X11 Forwarding Port Hijacking CVE-2008-3259 04 Oct 2011 1.2 (v2) Low Pass Sendmail Redirection Relaying Allowed 25 Aug 1999 5.3 (v3) Medium Pass IRIX webdist.cgi Arbitrary Command Execution CVE-1999-0039 22 Jun 1999 7.5 (v2) High Pass Gauntlet CyberPatrol Content Monitoring System Overﬂow CVE-2000-0437 25 May 2000 10 (v2) Critical Pass AnalogX SimpleServer:WWW /cgi-bin/ Long GET Request DoS CVE-2000-0473 22 Jun 2000 7.5 (v2) High Pass IBM WebSphere Application Server 6.1 < 6.1.0.9 Cross-session Information Disclosure CVE-2007-3397 05 Apr 2010 5 (v2) Medium Pass Virtual Visions FTP ftp.pl dir Parameter Traversal Arbitrary File Access CVE-2000-0674 15 Jul 2000 5 (v2) Medium Pass Apache Log4Shell CVE-2021-45046 Bypass Remote Code Execution CVE-2021-45046 17 Dec 2021 9 (v3) Critical Pass Web Server HTTP Dangerous Method Detection 30 Aug 2000 7.3 (v3) High Pass Matt Kruse calendar_admin.pl Shell Metacharacter Arbitrary Command Execution CVE-2000-0432 10 Sep 2000 7.5 (v2) High Pass ProFTPD STAT Command Remote DoS 16 Mar 2001 7.1 (v2) High Pass Apache Log4Shell RCE detection via callback correlation (Direct Check DNS) CVE-2021-44228 23 Dec 2021 10 (v3) Critical Pass Cold Fusion Administration Page Overﬂow DoS CVE-2000-0538 19 Dec 2000 5 (v2) Medium Pass wwwwais QUERY_STRING Parameter Remote Overﬂow CVE-2001-0223 19 Jan 2001 7.5 (v2) High Pass Way-board way-board.cgi db Parameter Arbitrary File Access CVE-2001-0214 13 Feb 2001 5 (v2) Medium Pass zml.cgi Directory Traversal CVE-2001-1209 17 Jan 2002 5 (v2) Medium Pass ISC BIND < 8.3.4 Multiple Remote Vulnerabilities CVE-2002-1219 CVE-2002-1220 CVE-2002-1221 08 Mar 2002 9.3 (v2) High Pass OpenSSH Kerberos TGT/AFS Token Passing Remote Overﬂow CVE-2002-0575 12 May 2002 7.5 (v2) High Pass Advanced Guestbook index.php entry Parameter SQL Injection CVE-2005-1548 10 May 2005 7.5 (v2) High Pass Apache JServ Nonexistent JSP Request XSS 22 May 2002 4.3 (v2) Medium Pass Apache Log4Shell RCE detection via callback correlation (Direct Check NTP) CVE-2021-44228 23 Dec 2021 10 (v3) Critical Pass Novell NetWare ncp Service NDS Object Enumeration 04 Jun 2002 5.3 (v3) Medium Pass Compaq Web-enabled Management Software HTTP Server Arbitrary Traﬃc Proxy CVE-2001-0374 22 May 2002 7.5 (v2) High Pass Multiple Vendor Embedded FTP Service Any Username Authentication Bypass 05 Jun 2002 5 (v2) Medium Pass Cisco Devices Multiple SSH Information Disclosure Vulnerabilities CVE-2001-0361 CVE-2001-0572 05 Jun 2002 7.5 (v2) High Pass Shiva LanRover Blank Password CVE-1999-0508 05 Jun 2002 10 (v2) Critical Pass Titan FTP Server quote stat Command Traversal Arbitrary Directory Listing 03 Sep 2004 5 (v2) Medium Pass JRun Web Server (JWS) GET Request Traversal Arbitrary File Access CVE-2001-1544 05 Jun 2002 5 (v2) Medium Pass AlienForm2 alienform.cgi Traversal Arbitrary File Manipulation CVE-2002-0934 11 Jun 2002 6.4 (v2) Medium Pass Jigsaw Webserver MS/DOS Device Request Remote DoS CVE-2002-1052 17 Jul 2002 5 (v2) Medium Pass SMC 2652W AP Malformed HTTP Request Remote DoS 13 Oct 2002 5 (v2) Medium Pass NEC SOCKS4 Module Username Handling Remote Overﬂow CVE-2002-2368 25 Nov 2002 10 (v2) Critical Pass News Server (NNTP) Information Disclosure 28 Jun 2002 None Pass QMTP/QMQP Server Detection 22 Sep 2002 None Pass phpAdsNew helperfunction.php Remote File Inclusion CVE-2001-1054 22 Aug 2002 8.3 (v3) High Pass DB4Web Server Debug Mode TCP Port Scanning Proxy CVE-2002-1484 02 Dec 2002 5 (v2) Medium Pass Nortel Baystack Default Password 07 Mar 2003 7.8 (v2) High Pass Inframail FTP Server NLST Command Remote Overﬂow CVE-2005-2085 29 Jun 2005 9 (v2) High Pass ISMail Multiple Command Domain Name Handling Remote Overﬂow CVE-2003-1382 27 Feb 2003 7.5 (v2) High Pass CVS Malformed Directory Request Double-free Privilege Escalation CVE-2003-0015 14 Mar 2003 9 (v2) High Pass Apache Log4Shell RCE detection via callback correlation (Direct Check UPnP) CVE-2021-44228 29 Dec 2021 10 (v3) Critical Pass Webmin 'miniserv.pl' Base-64 String Metacharacter Handling Session Spooﬁng CVE-2003-0101 28 Feb 2003 10 (v2) Critical Pass 3com RAS 1500 Conﬁguration Disclosure 26 Mar 2003 5 (v2) Medium Pass MultiTech Proxy Server Default Null Password CVE-2002-1629 30 Mar 2003 10 (v2) Critical Pass Ubiquiti UniFi Network Log4Shell Direct Check (CVE-2021-44228) CVE-2021-44228 31 Dec 2021 10 (v3) Critical Pass Ecartis HTML Field Manipulation Arbitrary User Password Reset CVE-2003-0162 30 Mar 2003 5.5 (v2) Medium Pass Vignette StoryServer TCL Server Crash Information Disclosure CVE-2002-0385 08 Apr 2003 5 (v2) Medium 25

RELAYTO Penetration Test Results - Page 25

RELAYTO Penetration Test Results Page 24 Page 26