| Security Issues and Fixes: 118.67.228.244 |
| Type |
Port |
Issue and Fix |
| Informational |
general/icmp |
Synopsis :
It is possible to determine the exact time set on the remote host.
Description :
The remote host answers to an ICMP timestamp request. This allows an
attacker to know the date which is set on your machine.
This may help him to defeat all your time based authentication
protocols.
Solution :
Filter out the ICMP timestamp requests (13), and the outgoing ICMP
timestamp replies (14).
Risk factor :
None
Plugin output :
The difference between the local and remote clocks is -15403 seconds.
CVE : CVE-1999-0524
Other references : OSVDB:94, CWE:200
Nessus ID : 10114 |
| Warning |
mdns (5353/udp) |
Synopsis :
It is possible to obtain information about the remote host.
Description :
The remote service understands the Bonjour (also known as ZeroConf or
mDNS) protocol, which allows anyone to uncover information from the
remote host such as its operating system type and exact version, its
hostname, and the list of services it is running.
Solution :
Filter incoming traffic to UDP port 5353 if desired.
Risk factor :
Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N)
Plugin output :
Nessus was able to extract the following information :
- mDNS hostname : mail.local.
- Advertised services :
o Service name : mail [00:16:36:44:b3:e4]._workstation._tcp.local.
Port number : 9
- CPU type : X86_64
- OS : LINUX
Nessus ID : 12218 |
| Informational |
general/tcp |
Synopsis :
Information about the Nessus scan.
Description :
This script displays, for each tested host, information about the scan itself:
- The version of the plugin set
- The type of plugin feed (HomeFeed or ProfessionalFeed)
- The version of the Nessus Engine
- The port scanner(s) used
- The port range scanned
- The date of the scan
- The duration of the scan
- The number of hosts scanned in parallel
- The number of checks done in parallel
Solution :
n/a
Risk factor :
None
Plugin output :
Information about this scan :
Nessus version : 4.4.1
Plugin feed version : 201107090135
Type of plugin feed : HomeFeed (Non-commercial use only)
Scanner IP : 118.67.248.116
Port scanner(s) : nessus_tcp_scanner
Port range : default
Thorough tests : no
Experimental tests : no
Paranoia level : 1
Report Verbosity : 1
Safe checks : yes
Optimize the test : yes
CGI scanning : disabled
Web application tests : disabled
Max hosts : 20
Max checks : 4
Recv timeout : 5
Backports : None
Scan Start Date : 2011/7/11 13:14
Scan duration : 208 sec
Nessus ID : 19506 |
| Informational |
general/tcp |
Synopsis :
It is possible to enumerate CPE names that matched on the remote
system.
Description :
By using information obtained from a Nessus scan, this plugin reports
CPE (Common Platform Enumeration) matches for various hardware and
software products found on a host.
Note that if an official CPE is not available for the product, this
plugin computes the best possible CPE based on the information
available from the scan.
See also :
http://cpe.mitre.org/
Solution :
n/a
Risk factor :
None
Plugin output :
Following application CPE matched on the remote system :
cpe:/a:apache:http_server:2.2.3 -> Apache Software Foundation Apache HTTP Server 2.2.3
Nessus ID : 45590 |
| Informational |
general/tcp |
Synopsis :
It is possible to guess the remote operating system
Description :
Using a combination of remote probes (TCP/IP, SMB, HTTP, NTP, SNMP, etc...)
it is possible to guess the name of the remote operating system in use, and
sometimes its version
Solution :
N/A
Risk factor :
None
Plugin output :
Remote operating system : Linux Kernel
Confidence Level : 30
Method : mDNS
The remote host is running Linux Kernel
Nessus ID : 11936 |
| Informational |
general/tcp |
Synopsis :
It was possible to resolve the name of the remote host.
Description :
Nessus was able to resolve the FQDN of the remote host.
Solution :
n/a
Risk factor :
None
Plugin output :
118.67.228.244 resolves as mail.solutionexchange.net.in.
Nessus ID : 12053 |
| Informational |
general/udp |
Synopsis :
It was possible to obtain traceroute information.
Description :
Makes a traceroute to the remote host.
Solution :
n/a
Risk factor :
None
Plugin output :
For your information, here is the traceroute from 118.67.248.116 to 118.67.228.244 :
118.67.248.116
118.67.248.1
61.8.147.174
125.22.195.81
59.145.11.205
203.101.95.130
203.101.100.214
125.21.167.90
203.101.100.189
203.101.111.150
202.71.135.225
202.71.135.89
118.67.228.244
Nessus ID : 10287 |