Professional Documents
Culture Documents
Compromised Hosts Report
Compromised Hosts Report
Compromised Hosts Report
Total Pages: 56
PROJECT SUMMARY
Project Name: Metasploit feat Nexpose
User: ridho.abdillah
EXECUTIVE SUMMARY
This report represents a security audit performed using Metasploit Pro from Rapid7, Inc. It contains confidential
information about the state of your network. Access to this information by unauthorized personnel may allow them to
compromise your network.
During this test, 1 hosts with a total of 29 exposed services were discovered. No modules were successfully run and no
login credentials were obtained.
Page 1 of 56
Disclosed Vulnerabilities
If a Metasploit module successfully exploits a target, it is automatically considered "vulnerable" to that exploit. Most, but not all, Metasploit modules open a
session against the target when they are successfully run. Other vulnerabilities, such as those imported from third party vulnerability scanners and those
entered manually against a host, are cross-checked against Metasploit modules for matching vulnerability references. These modules may then be used
to test the target hosts for exploitability.
BID-42596 - http://www.securityfocus.com/bid/42596
BID-42598 - http://www.securityfocus.com/bid/42598
BID-42599 - http://www.securityfocus.com/bid/42599
BID-42625 - http://www.securityfocus.com/bid/42625
BID-42633 - http://www.securityfocus.com/bid/42633
BID-42638 - http://www.securityfocus.com/bid/42638
BID-42646 - http://www.securityfocus.com/bid/42646
BID-43676 - http://www.securityfocus.com/bid/43676
CVE-2010-2008 - http://cvedetails.com/cve/CVE-2010-2008
CVE-2010-3677 - http://cvedetails.com/cve/CVE-2010-3677
CVE-2010-3678 - http://cvedetails.com/cve/CVE-2010-3678
CVE-2010-3679 - http://cvedetails.com/cve/CVE-2010-3679
CVE-2010-3680 - http://cvedetails.com/cve/CVE-2010-3680
CVE-2010-3681 - http://cvedetails.com/cve/CVE-2010-3681
CVE-2010-3682 - http://cvedetails.com/cve/CVE-2010-3682
CVE-2010-3683 - http://cvedetails.com/cve/CVE-2010-3683
CVE-2010-3833 - http://cvedetails.com/cve/CVE-2010-3833
Page 2 of 56
CVE-2010-3835 - http://cvedetails.com/cve/CVE-2010-3835
CVE-2010-3836 - http://cvedetails.com/cve/CVE-2010-3836
CVE-2010-3837 - http://cvedetails.com/cve/CVE-2010-3837
CVE-2010-3838 - http://cvedetails.com/cve/CVE-2010-3838
CVE-2010-3839 - http://cvedetails.com/cve/CVE-2010-3839
CVE-2010-3840 - http://cvedetails.com/cve/CVE-2010-3840
Page 3 of 56
References:
BID-49241 - http://www.securityfocus.com/bid/49241
BID-49249 - http://www.securityfocus.com/bid/49249
BID-49252 - http://www.securityfocus.com/bid/49252
CVE-2010-1914 - http://cvedetails.com/cve/CVE-2010-1914
CVE-2010-2484 - http://cvedetails.com/cve/CVE-2010-2484
CVE-2011-1657 - http://cvedetails.com/cve/CVE-2011-1657
CVE-2011-1938 - http://cvedetails.com/cve/CVE-2011-1938
CVE-2011-2202 - http://cvedetails.com/cve/CVE-2011-2202
CVE-2011-2483 - http://cvedetails.com/cve/CVE-2011-2483
CVE-2011-3182 - http://cvedetails.com/cve/CVE-2011-3182
CVE-2011-3267 - http://cvedetails.com/cve/CVE-2011-3267
OSVDB-72644
OSVDB-74739
BID-31486 - http://www.securityfocus.com/bid/31486
BID-35609 - http://www.securityfocus.com/bid/35609
BID-37640 - http://www.securityfocus.com/bid/37640
BID-37943 - http://www.securityfocus.com/bid/37943
BID-37974 - http://www.securityfocus.com/bid/37974
BID-38043 - http://www.securityfocus.com/bid/38043
BID-39543 - http://www.securityfocus.com/bid/39543
BID-40257 - http://www.securityfocus.com/bid/40257
BID-41198 - http://www.securityfocus.com/bid/41198
BID-42596 - http://www.securityfocus.com/bid/42596
BID-42598 - http://www.securityfocus.com/bid/42598
BID-42599 - http://www.securityfocus.com/bid/42599
BID-42625 - http://www.securityfocus.com/bid/42625
Page 4 of 56
BID-42638 - http://www.securityfocus.com/bid/42638
BID-42646 - http://www.securityfocus.com/bid/42646
BID-43676 - http://www.securityfocus.com/bid/43676
BID-51503 - http://www.securityfocus.com/bid/51503
BID-51506 - http://www.securityfocus.com/bid/51506
BID-51509 - http://www.securityfocus.com/bid/51509
BID-51510 - http://www.securityfocus.com/bid/51510
BID-51513 - http://www.securityfocus.com/bid/51513
BID-51514 - http://www.securityfocus.com/bid/51514
BID-51515 - http://www.securityfocus.com/bid/51515
BID-51516 - http://www.securityfocus.com/bid/51516
BID-51518 - http://www.securityfocus.com/bid/51518
BID-51524 - http://www.securityfocus.com/bid/51524
BID-51526 - http://www.securityfocus.com/bid/51526
CVE-2007-5925 - http://cvedetails.com/cve/CVE-2007-5925
CVE-2008-3963 - http://cvedetails.com/cve/CVE-2008-3963
CVE-2008-4098 - http://cvedetails.com/cve/CVE-2008-4098
CVE-2008-4456 - http://cvedetails.com/cve/CVE-2008-4456
CVE-2008-7247 - http://cvedetails.com/cve/CVE-2008-7247
CVE-2009-2446 - http://cvedetails.com/cve/CVE-2009-2446
CVE-2009-4019 - http://cvedetails.com/cve/CVE-2009-4019
CVE-2009-4030 - http://cvedetails.com/cve/CVE-2009-4030
CVE-2009-4484 - http://cvedetails.com/cve/CVE-2009-4484
CVE-2010-1621 - http://cvedetails.com/cve/CVE-2010-1621
CVE-2010-1626 - http://cvedetails.com/cve/CVE-2010-1626
CVE-2010-1848 - http://cvedetails.com/cve/CVE-2010-1848
CVE-2010-1849 - http://cvedetails.com/cve/CVE-2010-1849
CVE-2010-1850 - http://cvedetails.com/cve/CVE-2010-1850
CVE-2010-2008 - http://cvedetails.com/cve/CVE-2010-2008
CVE-2010-3677 - http://cvedetails.com/cve/CVE-2010-3677
CVE-2010-3678 - http://cvedetails.com/cve/CVE-2010-3678
CVE-2010-3679 - http://cvedetails.com/cve/CVE-2010-3679
CVE-2010-3680 - http://cvedetails.com/cve/CVE-2010-3680
CVE-2010-3681 - http://cvedetails.com/cve/CVE-2010-3681
CVE-2010-3682 - http://cvedetails.com/cve/CVE-2010-3682
CVE-2010-3683 - http://cvedetails.com/cve/CVE-2010-3683
CVE-2010-3833 - http://cvedetails.com/cve/CVE-2010-3833
CVE-2010-3834 - http://cvedetails.com/cve/CVE-2010-3834
CVE-2010-3835 - http://cvedetails.com/cve/CVE-2010-3835
CVE-2010-3836 - http://cvedetails.com/cve/CVE-2010-3836
CVE-2010-3837 - http://cvedetails.com/cve/CVE-2010-3837
CVE-2010-3838 - http://cvedetails.com/cve/CVE-2010-3838
CVE-2010-3839 - http://cvedetails.com/cve/CVE-2010-3839
CVE-2010-3840 - http://cvedetails.com/cve/CVE-2010-3840
CVE-2011-2262 - http://cvedetails.com/cve/CVE-2011-2262
CVE-2012-0075 - http://cvedetails.com/cve/CVE-2012-0075
CVE-2012-0087 - http://cvedetails.com/cve/CVE-2012-0087
CVE-2012-0101 - http://cvedetails.com/cve/CVE-2012-0101
CVE-2012-0102 - http://cvedetails.com/cve/CVE-2012-0102
CVE-2012-0112 - http://cvedetails.com/cve/CVE-2012-0112
CVE-2012-0113 - http://cvedetails.com/cve/CVE-2012-0113
CVE-2012-0114 - http://cvedetails.com/cve/CVE-2012-0114
CVE-2012-0115 - http://cvedetails.com/cve/CVE-2012-0115
CVE-2012-0116 - http://cvedetails.com/cve/CVE-2012-0116
CVE-2012-0117 - http://cvedetails.com/cve/CVE-2012-0117
CVE-2012-0118 - http://cvedetails.com/cve/CVE-2012-0118
CVE-2012-0119 - http://cvedetails.com/cve/CVE-2012-0119
CVE-2012-0120 - http://cvedetails.com/cve/CVE-2012-0120
CVE-2012-0484 - http://cvedetails.com/cve/CVE-2012-0484
CVE-2012-0485 - http://cvedetails.com/cve/CVE-2012-0485
CVE-2012-0486 - http://cvedetails.com/cve/CVE-2012-0486
CVE-2012-0487 - http://cvedetails.com/cve/CVE-2012-0487
CVE-2012-0488 - http://cvedetails.com/cve/CVE-2012-0488
CVE-2012-0489 - http://cvedetails.com/cve/CVE-2012-0489
CVE-2012-0490 - http://cvedetails.com/cve/CVE-2012-0490
CVE-2012-0491 - http://cvedetails.com/cve/CVE-2012-0491
CVE-2012-0492 - http://cvedetails.com/cve/CVE-2012-0492
CVE-2012-0493 - http://cvedetails.com/cve/CVE-2012-0493
CVE-2012-0494 - http://cvedetails.com/cve/CVE-2012-0494
CVE-2012-0495 - http://cvedetails.com/cve/CVE-2012-0495
CVE-2012-0496 - http://cvedetails.com/cve/CVE-2012-0496
OSVDB-55734
OSVDB-61956
OSVDB-78371
OSVDB-78372
OSVDB-78374
OSVDB-78375
OSVDB-78377
OSVDB-78378
Page 5 of 56
OSVDB-78379
OSVDB-78383
OSVDB-78384
OSVDB-78385
OSVDB-78386
OSVDB-78387
OSVDB-78388
OSVDB-78389
OSVDB-78390
OSVDB-78393
OSVDB-78394
URL - https://kb.isc.org/article/AA-00691/74/CVE-2012-1033%3A-Ghost-Domain-Names%3A-Revoked-Yet-Still-
Resolvable.html US-CERT-VU-542123
References:
Page 7 of 56
Associated Modules
auxiliary/scanner/http/rewrite_proxy_bypass
References: BID-49957 - http://www.securityfocus.com/bid/49957
CVE-2011-3368 - http://cvedetails.com/cve/CVE-2011-3368
URL - http://httpd.apache.org/security/vulnerabilities_13.html
URL - http://httpd.apache.org/security/vulnerabilities_20.html
URL - http://httpd.apache.org/security/vulnerabilities_22.html
Page 8 of 56
Associated Modules
<no matching module>
References: CVE-2011-3634 - http://cvedetails.com/cve/CVE-2011-3634
References:
Page 9 of 56
Vulnerability Test Status
Metasploit Module Host Discovered At Tested At Result
auxiliary/scanner/rservices/rexec_login <not tested> <not tested> <not tested> <not tested>
CVE-2011-3192 - http://cvedetails.com/cve/CVE-2011-3192
OSVDB-74721
US-CERT-VU-405811
Page 10 of 56
Vulnerability Test Status
Metasploit Module Host Discovered At Tested At Result
<no matching module> <not tested> <not tested> <not tested> <not tested>
Page 11 of 56
Vulnerability Test Status
Metasploit Module Host Discovered At Tested At Result
<no matching module> <not tested> <not tested> <not tested> <not tested>
CVE-2010-2063 - http://cvedetails.com/cve/CVE-2010-2063
OSVDB-65518
Page 12 of 56
Vulnerability Test Status
Metasploit Module Host Discovered At Tested At Result
exploit/linux/samba/chain_reply <not tested> <not tested> <not tested> <not tested>
Page 13 of 56
CVE-2010-2094 - http://cvedetails.com/cve/CVE-2010-2094
CVE-2010-2225 - http://cvedetails.com/cve/CVE-2010-2225
CVE-2010-2531 - http://cvedetails.com/cve/CVE-2010-2531
CVE-2010-2950 - http://cvedetails.com/cve/CVE-2010-2950
CVE-2010-3065 - http://cvedetails.com/cve/CVE-2010-3065
URL - https://kb.isc.org/article/AA-00698/0
URL - https://kb.isc.org/article/AA-00698/74/CVE-2012-1667%3A-Handling-of-zero-length-rdata-can-cause-named-to-terminate-
unexpectedly.html
US-CERT-VU-381699
Page 14 of 56
Vulnerability Name Affected Hosts
USN-1601-1: Bind vulnerability 192.168.149.129
Associated Modules
<no matching module>
BID-34539 - http://www.securityfocus.com/bid/34539
CVE-2009-1185 - http://cvedetails.com/cve/CVE-2009-1185
CVE-2009-1186 - http://cvedetails.com/cve/CVE-2009-1186
OSVDB-90677
Page 15 of 56
Associated Modules
<no matching module>
References: BID-40823 - http://www.securityfocus.com/bid/40823
CVE-2010-1411 - http://cvedetails.com/cve/CVE-2010-1411
CVE-2010-2065 - http://cvedetails.com/cve/CVE-2010-2065
CVE-2010-2067 - http://cvedetails.com/cve/CVE-2010-2067
OSVDB-65676
CVE-2008-3259 - http://cvedetails.com/cve/CVE-2008-3259
Page 16 of 56
References: BID-30691 - http://www.securityfocus.com/bid/30691
CVE-2008-2936 - http://cvedetails.com/cve/CVE-2008-2936
US-CERT-VU-938323
CVE-2016-2775 - http://cvedetails.com/cve/CVE-2016-2775
URL - https://kb.isc.org/article/AA-01393/0
Page 17 of 56
Vulnerability Test Status
Metasploit Module Host Discovered At Tested At Result
<no matching module> <not tested> <not tested> <not tested> <not tested>
US-CERT-VU-520827
US-CERT-VU-673343
CVE-2013-1900 - http://cvedetails.com/cve/CVE-2013-1900
CVE-2013-1901 - http://cvedetails.com/cve/CVE-2013-1901
Page 18 of 56
Vulnerability Test Status
Metasploit Module Host Discovered At Tested At Result
auxiliary/scanner/postgres/postgres_dbname_flag_i <not tested> <not tested> <not tested> <not tested>
njection
References:
Page 19 of 56
Vulnerability Test Status
Metasploit Module Host Discovered At Tested At Result
<no matching module> <not tested> <not tested> <not tested> <not tested>
CVE-2012-2122 - http://cvedetails.com/cve/CVE-2012-2122
Page 20 of 56
Vulnerability Name Affected Hosts
USN-986-1: bzip2 vulnerability 192.168.149.129
Associated Modules
<no matching module>
References:
Page 21 of 56
CVE-2010-2249 - http://cvedetails.com/cve/CVE-2010-2249
Page 22 of 56
Vulnerability Test Status
Metasploit Module Host Discovered At Tested At Result
<no matching module> <not tested> <not tested> <not tested> <not tested>
BID-42285 - http://www.securityfocus.com/bid/42285
CVE-2010-1797 - http://cvedetails.com/cve/CVE-2010-1797
CVE-2010-2541 - http://cvedetails.com/cve/CVE-2010-2541
CVE-2010-2805 - http://cvedetails.com/cve/CVE-2010-2805
CVE-2010-2806 - http://cvedetails.com/cve/CVE-2010-2806
CVE-2010-2807 - http://cvedetails.com/cve/CVE-2010-2807
CVE-2010-2808 - http://cvedetails.com/cve/CVE-2010-2808
OSVDB-66828
URL - https://kb.isc.org/article/AA-00932/0
URL - https://kb.isc.org/article/AA-00932/187/CVE-2010-0097%3A-BIND-9-DNSSEC-validation-code-could-cause-bogus-
NXDOMAIN-responses.html
US-CERT-VU-360341
Page 23 of 56
Associated Modules
<no matching module>
References: BID-51300 - http://www.securityfocus.com/bid/51300
CVE-2011-0216 - http://cvedetails.com/cve/CVE-2011-0216
CVE-2011-2821 - http://cvedetails.com/cve/CVE-2011-2821
CVE-2011-2834 - http://cvedetails.com/cve/CVE-2011-2834
CVE-2011-3905 - http://cvedetails.com/cve/CVE-2011-3905
CVE-2011-3919 - http://cvedetails.com/cve/CVE-2011-3919
OSVDB-75560
BID-45952 - http://www.securityfocus.com/bid/45952
BID-46354 - http://www.securityfocus.com/bid/46354
BID-46365 - http://www.securityfocus.com/bid/46365
BID-46429 - http://www.securityfocus.com/bid/46429
BID-46605 - http://www.securityfocus.com/bid/46605
BID-46786 - http://www.securityfocus.com/bid/46786
BID-46843 - http://www.securityfocus.com/bid/46843
BID-46854 - http://www.securityfocus.com/bid/46854
BID-46928 - http://www.securityfocus.com/bid/46928
BID-46967 - http://www.securityfocus.com/bid/46967
BID-46968 - http://www.securityfocus.com/bid/46968
BID-46969 - http://www.securityfocus.com/bid/46969
BID-46970 - http://www.securityfocus.com/bid/46970
BID-46975 - http://www.securityfocus.com/bid/46975
BID-46977 - http://www.securityfocus.com/bid/46977
BID-49241 - http://www.securityfocus.com/bid/49241
CVE-2006-7243 - http://cvedetails.com/cve/CVE-2006-7243
CVE-2010-4697 - http://cvedetails.com/cve/CVE-2010-4697
CVE-2010-4698 - http://cvedetails.com/cve/CVE-2010-4698
CVE-2011-0420 - http://cvedetails.com/cve/CVE-2011-0420
CVE-2011-0421 - http://cvedetails.com/cve/CVE-2011-0421
CVE-2011-0441 - http://cvedetails.com/cve/CVE-2011-0441
CVE-2011-0708 - http://cvedetails.com/cve/CVE-2011-0708
CVE-2011-1072 - http://cvedetails.com/cve/CVE-2011-1072
CVE-2011-1092 - http://cvedetails.com/cve/CVE-2011-1092
CVE-2011-1144 - http://cvedetails.com/cve/CVE-2011-1144
CVE-2011-1148 - http://cvedetails.com/cve/CVE-2011-1148
CVE-2011-1153 - http://cvedetails.com/cve/CVE-2011-1153
CVE-2011-1464 - http://cvedetails.com/cve/CVE-2011-1464
CVE-2011-1466 - http://cvedetails.com/cve/CVE-2011-1466
CVE-2011-1467 - http://cvedetails.com/cve/CVE-2011-1467
CVE-2011-1468 - http://cvedetails.com/cve/CVE-2011-1468
CVE-2011-1469 - http://cvedetails.com/cve/CVE-2011-1469
CVE-2011-1470 - http://cvedetails.com/cve/CVE-2011-1470
CVE-2011-1471 - http://cvedetails.com/cve/CVE-2011-1471
US-CERT-VU-210829
Page 25 of 56
Vulnerability Name Affected Hosts
MySQL Bug #29908: ALTER VIEW Privilege Escalation
192.168.149.129
Vulnerability
Associated Modules
<no matching module>
References: URL - http://bugs.mysql.com/bug.php?id=29908
Page 26 of 56
References: BID-35472 - http://www.securityfocus.com/bid/35472
BID-36363 - http://www.securityfocus.com/bid/36363
BID-36572 - http://www.securityfocus.com/bid/36572
BID-36573 - http://www.securityfocus.com/bid/36573
CVE-2009-1886 - http://cvedetails.com/cve/CVE-2009-1886
CVE-2009-1888 - http://cvedetails.com/cve/CVE-2009-1888
CVE-2009-2813 - http://cvedetails.com/cve/CVE-2009-2813
CVE-2009-2906 - http://cvedetails.com/cve/CVE-2009-2906
CVE-2009-2948 - http://cvedetails.com/cve/CVE-2009-2948
OSVDB-57955
OSVDB-58519
OSVDB-58520
URL - https://kb.isc.org/article/AA-00931/0
URL - https://kb.isc.org/article/AA-00931/187/CVE-2009-4022%3A-BIND-9-Cache-Update-from-Additional-Section.html
US-CERT-VU-418861
References:
Page 27 of 56
Associated Modules
<no matching module>
References:
Page 28 of 56
References: CVE-2009-1300 - http://cvedetails.com/cve/CVE-2009-1300
Page 29 of 56
Vulnerability Test Status
Metasploit Module Host Discovered At Tested At Result
<no matching module> <not tested> <not tested> <not tested> <not tested>
BID-46740 - http://www.securityfocus.com/bid/46740
BID-52201 - http://www.securityfocus.com/bid/52201
CVE-2009-5029 - http://cvedetails.com/cve/CVE-2009-5029
CVE-2010-0015 - http://cvedetails.com/cve/CVE-2010-0015
CVE-2011-1071 - http://cvedetails.com/cve/CVE-2011-1071
CVE-2011-1089 - http://cvedetails.com/cve/CVE-2011-1089
CVE-2011-1095 - http://cvedetails.com/cve/CVE-2011-1095
CVE-2011-1658 - http://cvedetails.com/cve/CVE-2011-1658
CVE-2011-1659 - http://cvedetails.com/cve/CVE-2011-1659
CVE-2011-2702 - http://cvedetails.com/cve/CVE-2011-2702
CVE-2011-4609 - http://cvedetails.com/cve/CVE-2011-4609
CVE-2012-0864 - http://cvedetails.com/cve/CVE-2012-0864
OSVDB-80718
References:
Page 30 of 56
Associated Modules
<no matching module>
References: BID-34010 - http://www.securityfocus.com/bid/34010
BID-46045 - http://www.securityfocus.com/bid/46045
CVE-2009-0887 - http://cvedetails.com/cve/CVE-2009-0887
CVE-2010-3316 - http://cvedetails.com/cve/CVE-2010-3316
CVE-2010-3430 - http://cvedetails.com/cve/CVE-2010-3430
CVE-2010-3431 - http://cvedetails.com/cve/CVE-2010-3431
CVE-2010-3435 - http://cvedetails.com/cve/CVE-2010-3435
CVE-2010-3853 - http://cvedetails.com/cve/CVE-2010-3853
CVE-2010-4706 - http://cvedetails.com/cve/CVE-2010-4706
CVE-2010-4707 - http://cvedetails.com/cve/CVE-2010-4707
References:
Page 31 of 56
References: BID-49303 - http://www.securityfocus.com/bid/49303
CVE-2011-3192 - http://cvedetails.com/cve/CVE-2011-3192
URL - http://httpd.apache.org/security/vulnerabilities_20.html
URL - http://httpd.apache.org/security/vulnerabilities_22.html
US-CERT-VU-405811
References:
Page 32 of 56
Vulnerability Test Status
Metasploit Module Host Discovered At Tested At Result
<no matching module> <not tested> <not tested> <not tested> <not tested>
Page 33 of 56
CVE-2010-1850 - http://cvedetails.com/cve/CVE-2010-1850
BID-44605 - http://www.securityfocus.com/bid/44605
BID-44718 - http://www.securityfocus.com/bid/44718
BID-44723 - http://www.securityfocus.com/bid/44723
BID-44727 - http://www.securityfocus.com/bid/44727
BID-44889 - http://www.securityfocus.com/bid/44889
Page 34 of 56
BID-45668 - http://www.securityfocus.com/bid/45668
CVE-2009-5016 - http://cvedetails.com/cve/CVE-2009-5016
CVE-2010-3436 - http://cvedetails.com/cve/CVE-2010-3436
CVE-2010-3709 - http://cvedetails.com/cve/CVE-2010-3709
CVE-2010-3710 - http://cvedetails.com/cve/CVE-2010-3710
CVE-2010-3870 - http://cvedetails.com/cve/CVE-2010-3870
CVE-2010-4156 - http://cvedetails.com/cve/CVE-2010-4156
CVE-2010-4409 - http://cvedetails.com/cve/CVE-2010-4409
CVE-2010-4645 - http://cvedetails.com/cve/CVE-2010-4645
US-CERT-VU-479900
BID-49616 - http://www.securityfocus.com/bid/49616
BID-49957 - http://www.securityfocus.com/bid/49957
CVE-2011-1176 - http://cvedetails.com/cve/CVE-2011-1176
CVE-2011-3348 - http://cvedetails.com/cve/CVE-2011-3348
CVE-2011-3368 - http://cvedetails.com/cve/CVE-2011-3368
OSVDB-76079
Page 35 of 56
Vulnerability Name Affected Hosts
'rlogin' Remote Login Service Enabled 192.168.149.129
Associated Modules
auxiliary/scanner/rservices/rexec_login
auxiliary/scanner/rservices/rlogin_login
auxiliary/scanner/rservices/rsh_login
BID-35609 - http://www.securityfocus.com/bid/35609
BID-37640 - http://www.securityfocus.com/bid/37640
BID-37943 - http://www.securityfocus.com/bid/37943
BID-37974 - http://www.securityfocus.com/bid/37974
BID-38043 - http://www.securityfocus.com/bid/38043
CVE-2008-4098 - http://cvedetails.com/cve/CVE-2008-4098
CVE-2008-4456 - http://cvedetails.com/cve/CVE-2008-4456
CVE-2008-7247 - http://cvedetails.com/cve/CVE-2008-7247
CVE-2009-2446 - http://cvedetails.com/cve/CVE-2009-2446
CVE-2009-4019 - http://cvedetails.com/cve/CVE-2009-4019
CVE-2009-4030 - http://cvedetails.com/cve/CVE-2009-4030
CVE-2009-4484 - http://cvedetails.com/cve/CVE-2009-4484
OSVDB-55734
OSVDB-61956
Page 36 of 56
Associated Modules
<no matching module>
References: BID-35949 - http://www.securityfocus.com/bid/35949
CVE-2009-2412 - http://cvedetails.com/cve/CVE-2009-2412
OSVDB-56765
OSVDB-56766
URL - http://bugs.mysql.com/bug.php?id=47320
URL - http://dev.mysql.com/doc/refman/5.0/en/news-5-0-88.html
URL - http://dev.mysql.com/doc/refman/5.1/en/news-5-1-41.html
BID-51193 - http://www.securityfocus.com/bid/51193
BID-51830 - http://www.securityfocus.com/bid/51830
BID-51954 - http://www.securityfocus.com/bid/51954
CVE-2011-0441 - http://cvedetails.com/cve/CVE-2011-0441
CVE-2011-4153 - http://cvedetails.com/cve/CVE-2011-4153
CVE-2011-4885 - http://cvedetails.com/cve/CVE-2011-4885
CVE-2012-0057 - http://cvedetails.com/cve/CVE-2012-0057
CVE-2012-0788 - http://cvedetails.com/cve/CVE-2012-0788
CVE-2012-0830 - http://cvedetails.com/cve/CVE-2012-0830
CVE-2012-0831 - http://cvedetails.com/cve/CVE-2012-0831
OSVDB-78819
US-CERT-VU-903934
References:
Page 37 of 56
Vulnerability Test Status
Metasploit Module Host Discovered At Tested At Result
<no matching module> <not tested> <not tested> <not tested> <not tested>
URL - https://kb.isc.org/article/AA-00778/0
URL - https://kb.isc.org/article/AA-00778/74/CVE-2012-4244%3A-A-specially-crafted-Resource-Record-could-cause-named-to-
terminate.html
Page 38 of 56
Vulnerability Test Status
Metasploit Module Host Discovered At Tested At Result
<no matching module> <not tested> <not tested> <not tested> <not tested>
BID-44347 - http://www.securityfocus.com/bid/44347
CVE-2010-3847 - http://cvedetails.com/cve/CVE-2010-3847
CVE-2010-3856 - http://cvedetails.com/cve/CVE-2010-3856
US-CERT-VU-537223
References:
Page 39 of 56
Vulnerability Test Status
Metasploit Module Host Discovered At Tested At Result
<no matching module> <not tested> <not tested> <not tested> <not tested>
Associated Modules
auxiliary/scanner/http/apache_optionsbleed
References: BID-100872 - http://www.securityfocus.com/bid/100872
BID-105598 - http://www.securityfocus.com/bid/105598
CVE-2017-9798 - http://cvedetails.com/cve/CVE-2017-9798
URL - http://httpd.apache.org/security/vulnerabilities_22.html
URL - http://httpd.apache.org/security/vulnerabilities_24.html
BID-44214 - http://www.securityfocus.com/bid/44214
BID-44643 - http://www.securityfocus.com/bid/44643
CVE-2010-3311 - http://cvedetails.com/cve/CVE-2010-3311
CVE-2010-3814 - http://cvedetails.com/cve/CVE-2010-3814
Page 40 of 56
Vulnerability Test Status
Metasploit Module Host Discovered At Tested At Result
<no matching module> <not tested> <not tested> <not tested> <not tested>
URL - https://kb.isc.org/article/AA-00938/0
URL - https://kb.isc.org/article/AA-00938/187/CVE-2010-3613%3A-cache-incorrectly-allows-a-ncache-entry-and-a-rrsig-for-the-
same-type.html
US-CERT-VU-706148
Page 41 of 56
References:
Page 42 of 56
Vulnerability Test Status
Metasploit Module Host Discovered At Tested At Result
<no matching module> <not tested> <not tested> <not tested> <not tested>
Page 43 of 56
Vulnerability Test Status
Metasploit Module Host Discovered At Tested At Result
<no matching module> <not tested> <not tested> <not tested> <not tested>
CVE-2012-2686 - http://cvedetails.com/cve/CVE-2012-2686
CVE-2013-0166 - http://cvedetails.com/cve/CVE-2013-0166
CVE-2013-0169 - http://cvedetails.com/cve/CVE-2013-0169
US-CERT-VU-737740
Page 44 of 56
Vulnerability Test Status
Metasploit Module Host Discovered At Tested At Result
auxiliary/dos/ssl/openssl_aesni <not tested> <not tested> <not tested> <not tested>
References:
Page 45 of 56
Vulnerability Test Status
Metasploit Module Host Discovered At Tested At Result
<no matching module> <not tested> <not tested> <not tested> <not tested>
Page 46 of 56
References: BID-33517 - http://www.securityfocus.com/bid/33517
CVE-2009-0034 - http://cvedetails.com/cve/CVE-2009-0034
OSVDB-51736
References:
Page 47 of 56
Vulnerability Test Status
Metasploit Module Host Discovered At Tested At Result
<no matching module> <not tested> <not tested> <not tested> <not tested>
References:
CVE-2009-3555 - http://cvedetails.com/cve/CVE-2009-3555
MS10-049 - http://www.microsoft.com/technet/security/bulletin/MS10-049.mspx
OSVDB-60521
OSVDB-60972
OSVDB-62210
OSVDB-65202
US-CERT-VU-120541
URL - https://kb.isc.org/article/AA-00544/0
URL - https://kb.isc.org/article/AA-00544/74/CVE-2011-4313%3A-BIND-9-Resolver-crashes-after-logging-an-error-in-query.c.html
US-CERT-VU-606539
Page 49 of 56
Vulnerability Test Status
Metasploit Module Host Discovered At Tested At Result
<no matching module> <not tested> <not tested> <not tested> <not tested>
Page 50 of 56
Vulnerability Test Status
Metasploit Module Host Discovered At Tested At Result
<no matching module> <not tested> <not tested> <not tested> <not tested>
Page 51 of 56
Vulnerability Test Status
Metasploit Module Host Discovered At Tested At Result
<no matching module> <not tested> <not tested> <not tested> <not tested>
Page 52 of 56
Vulnerability Test Status
Metasploit Module Host Discovered At Tested At Result
<no matching module> <not tested> <not tested> <not tested> <not tested>
URL - https://securityblog.redhat.com/2014/09/24/bash-specially-crafted-environment-variables-code-injection-attack/
CVE-2012-2311 - http://cvedetails.com/cve/CVE-2012-2311
US-CERT-VU-520827
US-CERT-VU-673343
Page 54 of 56
URL - http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html
Page 55 of 56
Login Details
Page 56 of 56