Web Servers Family for Nessus

ID	Name	Severity
17752	OpenSSL < 0.9.7-beta3 Buffer Overflow	high
17751	OpenSSL 0.9.6 CA Basic Constraints Validation Vulnerability	high
17750	OpenSSL < 0.9.6m / 0.9.7d Denial of Service	medium
17749	OpenSSL 0.9.6k < 0.9.6l Vulnerability	high
17748	OpenSSL 0.9.6 < 0.9.6k Multiple Vulnerabilities	high
17747	OpenSSL 0.9.6e < 0.9.6f Vulnerability	high
17746	OpenSSL 0.9.6 < 0.9.6e Multiple Vulnerabilities	critical
17745	OpenSSL < 0.9.6b Predictable Random Generator	medium
57410	lighttpd < 1.4.30 base64_decode Function Out-of-Bounds Read Error DoS	medium
57323	OpenSSL Version Detection	info
57082	Apache Tomcat 7.0.0 < 7.0.22 multiple vulnerabilities	medium
57080	Apache Tomcat 6.x < 6.0.35 Multiple Vulnerabilities	high
57040	Oracle WebLogic Server Web Services Security Policy not Enforced (CVE-2008-5459)	medium
57034	IBM WebSphere Application Server Detection	info
56996	OpenSSL 0.9.8f < 0.9.8h Multiple Vulnerabilities	high
56979	Oracle WebLogic Detection (Combined)	info
17743	Oracle WebLogic WLS Unspecified Vulnerability (CVE-2008-5461)	medium
17742	Oracle WebLogic JSP Pages and Servlets Unspecified Information Disclosure (CVE-2008-5460)	low
17741	Oracle WebLogic DoS (CVE-2008-2582)	medium
17740	Oracle WebLogic UDDI Explorer Unspecified Vulnerability (CVE-2008-2581)	medium
17739	Oracle WebLogic Admin State Unspecified Privilege Escalation (CVE-2008-4011)	low
17738	Oracle WebLogic JSP Pages Unspecified Information Disclosure (CVE-2008-2580)	medium
17737	Oracle WebLogic Multiple Authorizer Unspecified Privilege Escalation (CVE-2008-4009)	medium
17736	Oracle WebLogic ForeignJMS Component Unspecified Information Disclosure (CVE-2008-2576)	medium
17735	Oracle WebLogic Server Servlets Unspecified Unauthenticated Remote Issue (CVE-2008-4013)	medium
17734	Oracle WebLogic Plugins Unspecified Remote Issue (CVE-2008-2579)	medium
17733	Oracle WebLogic Server Unspecified Information Disclosure (CVE-2008-2578)	medium
17732	Oracle WebLogic Console / WLST Unspecified Privilege Escalation (CVE-2008-2577)	medium
56972	Apache HTTP Server mod_proxy Reverse Proxy Information Disclosure	medium
56876	Oracle HTTP Server Version	info
17731	Oracle HTTP Server (October 2006 CPU)	critical
17730	Oracle HTTP Server (January 2007 CPU)	high
17729	Oracle HTTP Server (January 2006 CPU)	critical
17728	Apache Tomcat < 6.0.13 Multiple Vulnerabilities	medium
17727	Apache Tomcat 5.0.x <= 5.0.30 / 5.5.x < 5.5.23 Content-Length HTTP Request Smuggling	medium
17726	Apache Tomcat 4.x < 4.1.36 Multiple Vulnerabilities	medium
17725	Sun Java Web Console BeginLogin.jsp redirect_url Parameter URI Redirection	medium
17707	OpenSSL < 0.9.5a /dev/random Check Failure	medium
17696	Apache HTTP Server 403 Error Page UTF-7 Encoded XSS	medium
17695	Apache Mixed Platform AddType Directive Information Disclosure	medium
17693	Apache mod_suexec Multiple Privilege Escalation Vulnerabilities	high
17692	Apache mod_negotiation Multi-Line Filename Upload Vulnerabilities	medium
56812	Novell Messenger Server Process Memory Remote Information Disclosure	medium
56683	IBM WebSphere Application Server < 6.1.0.29 Multiple Vulnerabilities	medium
56348	IBM WebSphere Application Server 8.0 < Fix Pack 1 Multiple Vulnerabilities	high
56301	Apache Tomcat 5.5.x < 5.5.34 Multiple Vulnerabilities	high
56229	IBM WebSphere Application Server 7.0 < Fix Pack 19 Multiple Vulnerabilities	medium
56216	Apache 2.2.x < 2.2.21 mod_proxy_ajp DoS	medium
56162	OpenSSL 1.0.0 < 1.0.0e Multiple Vulnerabilities	medium
56070	Apache Tomcat 7.0.0 < 7.0.21	high

Detections

Analytics

Web Servers Family for Nessus

high

high

medium

high

high

high

critical

medium

medium

info

medium

high

medium

info

high

info

medium

low

medium

medium

low

medium

medium

medium

medium

medium

medium

medium

medium

info

critical

high

critical

medium

medium

medium

medium

medium

medium

medium

high

medium

medium

medium

high

high

medium

medium

medium

high