Copyright Indicator

by Josef Weiss
November 14, 2013

This component presents a detailed vulnerability summary on files that may contain copyrighted materials, such as commercial movies or music files, that are being shared without the owner's permission. If any of these files actually contain copyrighted material, and if they are freely swapped around, your organization might be held liable for copyright infringement by associations such as the RIAA or the MPAA.

The associated report can be found here: Copyright Report

On the component, the top row is comprised of Active triggers based on the following plugins:

11777 Microsoft Windows SMB Share Hosting Possibly Copyrighted Material

This plugin displays a list of media files (such as .mp3, .ogg, .mpg, .avi) which have been found on the remote SMB shares. 

Some of these files may contain copyrighted materials, such as commercial movies or music files, that are being shared without the owner's permission. 

If any of these files actually contain copyrighted material, and if they are freely swapped around, your organization might be held liable for copyright infringement by associations such as the RIAA or the MPAA.

11778 Web Server Hosting Potential Copyrighted Material

The remote web server is hosting media (mp3, wav, avi, or asf files) that might be infringing on the owners' copyright.

11779 FTP Server Copyrighted Material Present

The remote ftp server is hosting mp3, wav, avi, or asf files which could be potentially copyright-infringing.

The bottom row contains passive plugins:

4709 Copyright Information Within HTML Comments

The remote web server was observed responding to a web request with HTML code that consisted of copyright information within the HTML comments.

1762 Webserver Javascript File (.js) Copyright Information

The remote web server was observed responding to a web request with JavaScript code which consisted of a the following copyright information. If this JavaScript is part of an open source or third party project, you will need to ensure that your SDL covers this code as well as all code written 'in house'.

The component is available in the SecurityCenter 4.7 Dashboard app feed, an app store of dashboards, reports, and assets.

The requirements are:

  • SecurityCenter 4.7
  • Nessus 5.2.1
  • PVS 4.0