| |
| Test B1 (Mainstream Attack Baseline): Pass |
| Vulnerability |
Exploit
/ Script Name |
Baseline
Pass/Fail |
Signature
Fires |
Reported
as: |
CVE # |
| NFS Automounter |
amd |
Pass |
1 |
RPC
AMD TCP amqproc_mount plog overflow attempt
|
CVE-1999-0704
|
| IIS
Unicode |
uni |
Pass |
2 |
WEB-IIS
cmd.exe access, ATTACK-RESPONSES directory listing
|
CAN-2000-0284
|
| cmsd |
cmsd |
Pass |
4 |
SHELLCODE
sparc NOOP [x2], RPC portmap cmsd request UDP [x2]
|
CVE-1999-0696 |
| snmp
(public write) |
snmp |
Pass |
1 |
SNMP
public access udp
|
CAN-1999-0517
|
| sadmind |
sadmind |
Pass |
2 |
RPC portmap
sadmind request UDP, RPC sadmind UDP NETMGT_PROC_SERVICE CLIENT_DOMAIN
overflow attempt
|
CVE-1999-0977
|
| RDS |
rds |
Pass |
2 |
WEB-IIS
MDAC Content-Type overflow attempt, WEB-IIS msadcs.dll access
|
CVE-1999-1011
|
| wu-ftpd |
wu |
Pass |
2 |
SHELLCODE
x86 setuid 0, FTP SITE overflow attempt
|
CVE-2001-0550 |
| imapd |
imap |
Pass |
2 |
IMAP
lsub overflow attempt, SHELLCODE x86 NOOP
|
CAN-2000-0284
|
| statd |
statd |
Pass |
4 |
RPC
STATD UDP stat mon_name format string exploit attempt [x3],
RPC portmap status request UDP
|
CVE-2000-0666
|
| IIS ISAPI |
isapi |
Pass |
2 |
WEB-IIS
ISAPI .printer access, ATTACK-RESPONSES id check returned root
|
CVE-2001-0241
|
| |
|
|
|
|
|
| Totals: |
10 attacks |
|
22 |
|
|
| |
| Test B2 (modified attacks): Pass |
| |
|
|
|
|
|
| imapd |
ADMutated
imapd attack |
IMAP
lsub overflow attempt, SHELLCODE x86 NOOP
|
Pass |
|
|
| |
|
|
|
|
|
