The remote Apache server is running a version of mod_jk which is vulnerable in the way it processes chunked encoded requests. This may allow an attacker to desynchronise Apache and Tomcat which would prevent this host from running properly.

The remote Apache server is running mod_frontpage. Versions older than 1.6.1 are vulnerable to a buffer overflow which may allow an attacker to gain root access on this host. *** Note that it is not possible to remotely determine the version of mod_frontpage which is running, so this may be a false positive.

The remote host is running LocalWeb2000. Versions of this software up to and including 2.10 allow an attacker to read normally protected files by prepending a dot in front of their name.

The remote host is running the IMail web interface. There is a bug in the version being run which may allow an attacker to read the mailboxes of the users by sending them a malformed HTML email containing a link to an image hosted on a rogue web server.

The remote dwhttpd server is vulnerable to a format string attack. An attacker may use this flaw to execute arbitrary code on this host, with the privileges of the dwhttpd web server

The remote Domino Web Server is vulnerable to a directory traversal attack. An attacker may read arbitrary files on the remote system by prepending %00%00.nsf/../ in front of their names.

The remote host is running a version of the Domino web server which is vulnerable to various flaws when it acts as a web client (through web retriever) or in LDAP. An attacker may use these flaws to execute arbitrary code on this host.

The remote host is running the Compaq WBEM service. This service discloses sensitive information about this host, such as the platform name and version, the installed hotfixes and the running services. 

The remote host is running Communigate Pro version 3.0 or 3.1. There is a flaw in this version which may allow an attacker to execute arbitrary code on this host.

The remote host is running version 3.0.x of the BitKeeper web server. Some versions of this service are known to allow anyone execute arbitrary commands with the privileges of the BitKeeper daemon.

The remote host is running the BadBlue web server. There is a flaw in the version used that may allow attackers to gain administrative privileges on this host without having to log in.

The remote host is running a version of PHP which is older than 4.0.4. There is a buffer overflow in the IMAP module of this version which may allow an attacker to execute arbitrary commands with the privileges of the web server if a PHP script connects to a rogue IMAP server.

ID	Name	Severity
1510	Apache mod_jk < 1.2.1 Chunked Encoding DoS	high
1509	Apache mod_frontpage < 1.6.1 Remote Overflow	high
1508	LocalWeb2000 2.10 Crafted Request File Disclosure	high
1507	IMail < 7.0.6 Account Hijacking	medium
1506	dwhttpd < 4.2 GET Request Remote Format String (deprecated)	high
1505	Domino < 5.0.7 NSF File Request Directory Traversal File Access	medium
1504	Lotus Domino < 5.0.12 / 6.0.1 Multiple Vulnerabilities	high
1503	Compaq WBEM Server Detection	medium
1502	Communigate Pro < 3.2 HTTP Configuration Port Remote Overflow	high
1501	BitKeeper 3.0.x Remote Command Execution	high
1500	BadBlue < 2.3 ISAPI Extension Administrative Actions Bypass	high
1479	PHP < 4.0.4 IMAP Module Overflow	medium

Detections

Analytics

Web Servers Family for Nessus Network Monitor

high

high

high

medium

high

medium

high

medium

high

high

high

medium