Vulnerability Scanning Solutions, LLC.
Home
Our Process
Residential
Corporate
What We Scan For
Sample Report
Client List
Terms
Contact Us

What We Scan For

Remote file access Vulnerabilities

Name Summary
3com RAS 1500 configuration disclosure Obtains the remote user_settings.cfg
AliBaba path climbing GET ../../file
Anaconda Double NULL Encoded Remote File Retrieval Anaconda Foundation Directory Double NULL Encoded Remote File Retrieval
Anaconda remote file retrieval Anaconda Foundation Directory remote file retrieval
Apache < 2.0.44 file reading on Win32 Requests /< and gets the output
Apache2 double slash dir index sends a GET // HTTP/1.0
Atrium Mercur Mailserver mercure imap version check
Avotus mm File Retrieval attempt Retrieves /etc/shadow
BadBlue Administrative Actions Vulnerability Get the version of the remote badblue server
BadBlue Remote Administrative Interface Access Get the version of the remote badblue server
Boa file retrieval Boa file retrieval
Check for Apache Multiple / vulnerability Send multiple /'s to Windows Apache Server
CommunigatePro Hijacking Checks the version of the remote CommunigatePro web Server
Eserv Directory Index GET /?
Eserv traversal \..\..\file.txt
eXtropia Web Store remote file retrieval eXtropia Web Store remote file retrieval
FileMakerPro Detection connects to port 49727 and says 'hello'
Firebird DB remote buffer overflow Firebird DB remote buffer overflow
FKey Remote Arbitrary File Disclosure fkey file disclosure
FSP Suite Directory Traversal Vulnerability FSPD Detection
FTPGate traversal \..\..\file.txt
HTTP Directory Traversal (Windows) thttpd flaw in 2.0.7 windows port
iChat Determines if iChat is vulnerable to a stupid bug
IlohaMail Arbitrary File Access via Language Variable Checks for Arbitrary File Access via Language Variable vulnerability in IlohaMail
IlohaMail Arbitrary File Access via Session Variable Vulnerability Checks for Arbitrary File Access via Session Variable vulnerability in IlohaMail
IlohaMail Readable Configuration Files Checks for Readable Configuration Files in IlohaMail
IMAP arbitrary file retrieval Checks for IMAP arbitrary file retrieval vulnerability
Informix traversal /ifx/?LO=../../../file
Insecure Napster clone Detect the presence of a Napster client clone
iPlanet Certificate Management Traversal \..\..\file.txt
ipop2d reads arbitrary files checks if ipop2 allows the reading of any file
Kiwi CatTools < 3.2.9 Directory Traversal Try to grab a file outside the tftp root
LDAP allows anonymous binds Check for LDAP null bind
LDAP allows null bases Check for LDAP null base
LocalWeb2000 remote read Checks for LocalWeb2000
Lotus Domino 6.0 vulnerabilities Checks for the version of the remote Domino Server
Lotus Domino ?open Vulnerability Checks for the domino ?open feature
Mailman private.py Directory Traversal Vulnerability Checks for Mailman private.py Directory Traversal Vulnerability
McAfee myCIO Directory Traversal McAfee myCIO Directory Traversal
MetaInfo servers Read everything using '../' in the URL
Misconfigured Gnutella Detect sensitive files shared by Gnutella
mod_auth_any command execution Attempts to log into the remote web server
Mountable NFS shares Checks for NFS
MultiTech Proxy Server Default Password Attempts to log into the remote web server
Music Daemon Denial of Service Music Daemon DoS
Music Daemon File Disclosure Music Daemon File Disclosure
MySQL mysqld Privilege Escalation Vulnerability Checks for the remote MySQL version
NetBeans Java IDE determines whether the remote root directory is browseable
Netscape Enterprise INDEX request problem INDEX / HTTP/1.1
NFS cd .. Checks for the NFS .. attack
NFS export Checks for NFS
NFS fsirand Checks for NFS
Office files list Displays office files
rsync path traversal Determines if rsync is running
Samba Remote Arbitrary File Access checks samba version
Sambar Default Accounts Tests for default accounts
sawmill allows the reading of the first line of any file Checks if sawmill reads any file
sawmill password Obtains sawmill's password
Simple PHP Blog dir traversal Simple PHP Blog dir traversal
Subversion Detection Subversion Detection
Subversion Module File Restriction Bypass Check for Subversion version
Subversion Module unreadeable path information disclosure Check for Subversion version
Subversion Pre-Commit-Hook Vulnerability Subversion Pre-Commit-Hook Vulnerability
Subversion remote Buffer Overflow Subversion remote Buffer Overflow
Subversion SVN Protocol Parser Remote Integer Overflow Subversion SVN Protocol Parser Remote Integer Overflow
Test HTTP dangerous methods Verifies the access rights to the web server (PUT, DELETE)
Test Microsoft IIS Source Fragment Disclosure Test Microsoft IIS Source Fragment Disclosure
TFTP directory traversal Attempts to grab a file through TFTP
TFTP file detection (Cisco IOS) Determines if the remote host has sensitive files exposed via TFTP (Cisco IOS)
The ACC router shows configuration without authentication Checks for ACC SHOW command bug
The remote portmapper forwards NFS requests Checks for the portmapper proxying NFS
TheServer clear text password TheServer stores clear text passwords in server.ini
thttpd directory traversal thru Host: thttpd flaw
thttpd flaw thttpd flaw
thttpd ssi file retrieval thttpd ssi flaw
Use LDAP search request to retrieve information from NT Directory Services Use LDAP search request to retrieve information from NT Directory Services
User Mountable NFS shares Checks for User Mountable NFS
Web Shopper remote file retrieval Web Shopper remote file retrieval
WebLogic Server /%00/ bug Make a request like http://www.example.com/%00/
WebLogic Server DoS WebLogic Server DoS
WebSite 1.0 buffer overflow WebSite 1.0 CGI arbitrary code execution


Vulnerability Scanning Solutions, LLC.