Copyright Report

by Josef Weiss
November 14, 2013

This report presents a detailed vulnerability summary on files that may contain copyrighted materials, such as commercial movies or music files, that are being shared without the owner's permission. If any of these files actually contain copyrighted material, and if they are freely swapped around, your organization might be held liable for copyright infringement by associations such as the RIAA or the MPAA.

The associated component can be found here: Copyright Indicator

The report is laid out in 3 main sections - About, Copyright Overview, and Vulnerability Details. It utilizes the following plugins to gather and present detailed results, which include file name and path information.

11777 Microsoft Windows SMB Share Hosting Possibly Copyrighted Material

This plugin displays a list of media files (such as .mp3, .ogg, .mpg, .avi) which have been found on the remote SMB shares. 

Some of these files may contain copyrighted materials, such as commercial movies or music files, that are being shared without the owner's permission. 

If any of these files actually contain copyrighted material, and if they are freely swapped around, your organization might be held liable for copyright infringement by associations such as the RIAA or the MPAA.

11778 Web Server Hosting Potential Copyrighted Material

The remote web server is hosting media (mp3, wav, avi, or asf files) that might be infringing on the owners' copyright.

11779 FTP Server Copyrighted Material Present

The remote ftp server is hosting mp3, wav, avi, or asf files which could be potentially copyright-infringing.

The bottom row contains passive plugins:

4709 Copyright Information Within HTML Comments

The remote web server was observed responding to a web request with HTML code that consisted of copyright information within the HTML comments.

1762 Webserver Javascript File (.js) Copyright Information

The remote web server was observed responding to a web request with JavaScript code which consisted of a the following copyright information. If this JavaScript is part of an open source or third party project, you will need to ensure that your SDL covers this code as well as all code written 'in house'.

The report is available in the SecurityCenter 4.7 Report app feed, an app store of dashboards, reports, and assets.

The requirements are:

  • SecurityCenter 4.7
  • Nessus 5.2.1
  • PVS 4.0