|
Security
Issues and Fixes: 151.108.232.190 |
|
Type |
Port |
Issue
and Fix |
|
Vulnerability |
netbios-ssn
(139/tcp) |
. It
was possible to log into the remote host using a NULL
session.
The concept of a NULL session is to provide a null
username and
a null password, which grants the user the 'guest'
access
To prevent null sessions, see MS KB Article Q143474
(NT 4.0) and
Q246261 (Windows 2000).
Note that this won't
completely disable null sessions, but will
prevent them from
connecting to IPC$
Please see http://msgs.securepoint.com/cgi-bin/get/nessus-0204/50/1.html
.
All the smb tests will be done as
''/''
CVE : CAN-1999-0504,
CAN-1999-0506,
CVE-2000-0222
BID
: 990
Nessus ID : 10394
|
|
Warning |
netbios-ssn
(139/tcp) |
The domain
SID can be obtained remotely. Its value is :
0
An
attacker can use it to obtain the list of the local users of this
host
Solution : filter the ports 137 to 139 and 445
Risk
factor : Low
CVE : CVE-2000-1200
BID
: 959
Nessus ID : 10398 |
|
Warning |
netbios-ssn
(139/tcp) |
The host
SID can be obtained remotely. Its value is :
:
0-0-0-0-0
An attacker can use it to obtain the list of the
local users of this host
Solution : filter the ports 137 to 139
and 445
Risk factor : Low
CVE : CVE-2000-1200
BID
: 959
Nessus ID : 10859 |
|
Warning |
netbios-ssn
(139/tcp) |
Here is
the browse list of the remote host :
INTSERVTEST01 -
STANDARD-PZBF -
TEST-1NVY2IOU -
This is
potentially dangerous as this may help the attack
of a potential
hacker by giving him extra targets to check for
Solution :
filter incoming traffic to this port
Risk factor :
Low
Nessus ID : 10397 |
|
Informational |
netbios-ssn
(139/tcp) |
The remote
native lan manager is : Windows .NET
5.2
The remote Operating System is : Windows .NET 3718
The
remote SMB Domain Name is : WORKGROUP
Nessus ID : 10785 |
|
Warning |
loc-srv
(135/tcp) |
DCE
services running on the remote can be enumerated
by connecting on
port 135 and doing the appropriate
queries.
An attacker
may use this fact to gain more knowledge
about the remote
host.
Solution : filter incoming
traffic to this port.
Risk factor : Low
Nessus ID : 10736
|
|
Informational |
loc-srv
(135/tcp) |
A DCE
service is listening on this host
UUID:
906b0ce0-c70b-1067-b317-00dd010662da, version 1
Endpoint: ncalrpc[LRPC00000434.00000001]
Nessus ID : 10736 |
|
Informational |
loc-srv
(135/tcp) |
A DCE
service is listening on this host
UUID:
906b0ce0-c70b-1067-b317-00dd010662da, version 1
Endpoint: ncalrpc[LRPC00000434.00000001]
Nessus ID : 10736 |
|
Informational |
loc-srv
(135/tcp) |
A DCE
service is listening on this host
UUID:
906b0ce0-c70b-1067-b317-00dd010662da, version 1
Endpoint: ncalrpc[LRPC00000434.00000001]
Nessus ID : 10736 |
|
Informational |
loc-srv
(135/tcp) |
A DCE
service is listening on this host
UUID:
906b0ce0-c70b-1067-b317-00dd010662da, version 1
Endpoint: ncalrpc[LRPC00000434.00000001]
Nessus ID : 10736 |
|
Informational |
loc-srv
(135/tcp) |
A DCE
service is listening on this host
UUID:
1ff70682-0a51-30e8-076d-740be8cee98b, version 1
Endpoint: ncalrpc[wzcsvc]
Nessus
ID : 10736 |
|
Informational |
loc-srv
(135/tcp) |
A DCE
service is listening on this host
UUID:
1ff70682-0a51-30e8-076d-740be8cee98b, version 1
Endpoint: ncalrpc[OLE59873F0F55BC48B789A1D019D74B]
Nessus ID : 10736 |
|
Informational |
loc-srv
(135/tcp) |
A DCE
service is listening on this host
UUID:
1ff70682-0a51-30e8-076d-740be8cee98b, version 1
Endpoint:
ncacn_np:\\TEST-1NVY2IOU9H[\PIPE\atsvc]
Nessus
ID : 10736 |
|
Informational |
loc-srv
(135/tcp) |
A DCE
service is listening on this host
UUID:
378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1
Endpoint: ncalrpc[wzcsvc]
Nessus
ID : 10736 |
|
Informational |
loc-srv
(135/tcp) |
A DCE
service is listening on this host
UUID:
378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1
Endpoint: ncalrpc[OLE59873F0F55BC48B789A1D019D74B]
Nessus ID : 10736 |
|
Informational |
loc-srv
(135/tcp) |
A DCE
service is listening on this host
UUID:
378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1
Endpoint:
ncacn_np:\\TEST-1NVY2IOU9H[\PIPE\atsvc]
Nessus
ID : 10736 |
|
Informational |
loc-srv
(135/tcp) |
A DCE
service is listening on this host
UUID:
0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53, version 1
Endpoint: ncalrpc[wzcsvc]
Nessus
ID : 10736 |
|
Informational |
loc-srv
(135/tcp) |
A DCE
service is listening on this host
UUID:
0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53, version 1
Endpoint: ncalrpc[OLE59873F0F55BC48B789A1D019D74B]
Nessus ID : 10736 |
|
Informational |
loc-srv
(135/tcp) |
A DCE
service is listening on this host
UUID:
0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53, version 1
Endpoint:
ncacn_np:\\TEST-1NVY2IOU9H[\PIPE\atsvc]
Nessus
ID : 10736 |
|
Informational |
loc-srv
(135/tcp) |
A DCE
service is listening on this host
UUID:
12345778-1234-abcd-ef00-0123456789ac, version 1
Endpoint:
ncacn_np:\\TEST-1NVY2IOU9H[\PIPE\lsass]
Nessus
ID : 10736 |
|
Informational |
loc-srv
(135/tcp) |
A DCE
service is listening on this host
UUID:
12345778-1234-abcd-ef00-0123456789ac, version 1
Endpoint: ncalrpc[audit]
Nessus ID : 10736 |
|
Informational |
loc-srv
(135/tcp) |
A DCE
service is listening on this host
UUID:
12345778-1234-abcd-ef00-0123456789ac, version 1
Endpoint: ncalrpc[securityevent]
Nessus ID : 10736 |
|
Informational |
loc-srv
(135/tcp) |
A DCE
service is listening on this host
UUID:
12345778-1234-abcd-ef00-0123456789ac, version 1
Endpoint: ncalrpc[protected_storage]
Nessus ID : 10736 |
|
Informational |
loc-srv
(135/tcp) |
A DCE
service is listening on this host
UUID:
12345778-1234-abcd-ef00-0123456789ac, version 1
Endpoint:
ncacn_np:\\TEST-1NVY2IOU9H[\PIPE\protected_storage]
Nessus ID : 10736 |
|
Informational |
loc-srv
(135/tcp) |
A DCE
service is listening on this host
UUID:
12345778-1234-abcd-ef00-0123456789ac, version 1
Endpoint: ncalrpc[dsrole]
Nessus
ID : 10736 |
|
Informational |
loc-srv
(135/tcp) |
A DCE
service is listening on this host
UUID:
12345678-1234-abcd-ef00-0123456789ab, version 1
Endpoint:
ncacn_np:\\TEST-1NVY2IOU9H[\PIPE\lsass]
Annotation: IPSec Policy agent endpoint
Nessus ID : 10736 |
|
Informational |
loc-srv
(135/tcp) |
A DCE
service is listening on this host
UUID:
12345678-1234-abcd-ef00-0123456789ab, version 1
Endpoint: ncalrpc[audit]
Annotation: IPSec Policy agent endpoint
Nessus ID : 10736 |
|
Informational |
loc-srv
(135/tcp) |
A DCE
service is listening on this host
UUID:
12345678-1234-abcd-ef00-0123456789ab, version 1
Endpoint: ncalrpc[securityevent]
Annotation: IPSec Policy agent endpoint
Nessus ID : 10736 |
|
Informational |
loc-srv
(135/tcp) |
A DCE
service is listening on this host
UUID:
12345678-1234-abcd-ef00-0123456789ab, version 1
Endpoint: ncalrpc[protected_storage]
Annotation: IPSec Policy agent endpoint
Nessus ID : 10736 |
|
Informational |
loc-srv
(135/tcp) |
A DCE
service is listening on this host
UUID:
12345678-1234-abcd-ef00-0123456789ab, version 1
Endpoint:
ncacn_np:\\TEST-1NVY2IOU9H[\PIPE\protected_storage]
Annotation: IPSec Policy agent endpoint
Nessus ID : 10736 |
|
Informational |
loc-srv
(135/tcp) |
A DCE
service is listening on this host
UUID:
12345678-1234-abcd-ef00-0123456789ab, version 1
Endpoint: ncalrpc[dsrole]
Annotation: IPSec Policy agent endpoint
Nessus ID : 10736 |
|
Informational |
microsoft-ds
(445/tcp) |
A CIFS
server is running on this port
Nessus
ID : 11011 |
|
Informational |
LSA-or-nterm
(1026/tcp) |
A DCE
service is listening on this port
UUID:
1ff70682-0a51-30e8-076d-740be8cee98b, version 1
Endpoint:
ncacn_ip_tcp:151.108.232.190[1026]
Nessus ID : 10736 |
|
Informational |
LSA-or-nterm
(1026/tcp) |
A DCE
service is listening on this port
UUID:
378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1
Endpoint:
ncacn_ip_tcp:151.108.232.190[1026]
Nessus ID : 10736 |
|
Informational |
LSA-or-nterm
(1026/tcp) |
A DCE
service is listening on this port
UUID:
0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53, version 1
Endpoint:
ncacn_ip_tcp:151.108.232.190[1026]
Nessus ID : 10736 |
|
Informational |
NFS-or-IIS
(1025/tcp) |
A DCE
service is listening on this port
UUID:
12345678-1234-abcd-ef00-0123456789ab, version 1
Endpoint:
ncacn_ip_tcp:151.108.232.190[1025]
Annotation: IPSec Policy agent endpoint
Nessus ID : 10736 |
|
Informational |
NFS-or-IIS
(1025/tcp) |
A DCE
service is listening on this port
UUID:
12345778-1234-abcd-ef00-0123456789ac, version 1
Endpoint:
ncacn_ip_tcp:151.108.232.190[1025]
Nessus ID : 10736 |
|
Informational |
general/udp |
For your
information, here is the traceroute to
151.108.232.190 :
151.108.232.190
Nessus ID : 10287 |
|
Warning |
general/icmp |
The
remote host answers to an ICMP timestamp
request. This allows an
attacker to know the
date which is set on your machine.
This may help him to defeat all your
time based
authentication protocols.
Solution :
filter out the ICMP timestamp
requests (13), and the outgoing
ICMP
timestamp replies (14).
Risk factor : Low
CVE :
CAN-1999-0524
Nessus ID : 10114
|
|
Warning |
general/tcp |
The
remote host uses non-random IP IDs, that is, it is
possible to
predict the next value of the ip_id field
of
the ip packets sent by this
host.
An attacker may use this feature to determine if the
remote
host sent a packet in reply to another request. This may
be
used for portscanning and other
things.
Solution : Contact your vendor for a patch
Risk
factor : Low
Nessus ID : 10201
|
|
Informational |
general/tcp |
Remote OS
guess : Microsoft Windows.NET Enterprise Server (build 3604-3615
beta)
CVE : CAN-1999-0454
Nessus ID : 11268 |
|
Warning |
netbios-ns
(137/udp) |
. The
following 6 NetBIOS names have been gathered
:
TEST-1NVY2IOU9H
WORKGROUP
TEST-1NVY2IOU9H
WORKGROUP
WORKGROUP
__MSBROWSE__
. The remote host has the following MAC address on its adapter :
0x00 0x50 0xda 0x5a 0x26 0x11
If you do not want to allow everyone to find the NetBios name
of your computer, you should
filter incoming traffic to this port.
Risk factor :
Medium
CVE : CAN-1999-0621
Nessus ID : 10150 |