Overview

This help file contains descriptions of 105 vulnerabilities. These vulnerabilities are listed by category in the following table. You can also view this list of vulnerabilities by risk level or search for a particular vulnerability in the index.

Internet Scanner Vulnerabilities by Category
Category: Vulnerabilities:
Backdoors
Getadmin Present GetAdmin utility present
PC Anywhere Detect pcAnywhere detected
DCOM
DCOM - permissions DCOM can be enabled by non-administrators
NIS
NIS TCP Running NIS is running over TCP
NIS UDP Running NIS is running over UDP
NISd Buffer Overflow Rpc.nisd buffer overflow in Solaris
NisdReserved NISd is running over a non-reserved port
nisdom NIS server and domain names
nistcp NIS password guessed via TCP
nisudp NIS password guessed via UDP
NT Critical Issues
LM security LAN Manager security
Passfilt.DLL Not Found Passfilt.dll not found
Passfilt.DLL Not Installed Passfilt.dll not installed
Passfilt.DLL checksum Passfilt.dll checksum incorrect
Passfilt.dll incorrect Passfilt.dll unknown version
winlogon permissions Winlogon Key has incorrect permissions
NT Groups
Account Operator Account operator includes unallowed user
Administrator Group Administrators group includes non-default user
Backup Operator Backup Operator group includes non-default user
Power User Power Users group includes non-default user
Print Operator Print Operator group includes non-default user
Replicator Replicator group includes non-default user
System Operator System Operator group includes non-default user
NT Networking
IP Forwarding IP forwarding enabled
TcpIp Security Windows NT TCP/IP security not enabled
Trusted Domain Windows NT trusted domain
Trusted Host Trusted host(s) found
multihomed Multihomed host
NT Password
Account Operator Blank Pwd Account Operator account has blank password
Account Operator User Pwd Account Operator username same as password
Autologon password Autologon password readable
Backup Operator Blank Pwd Backup Operator account has blank password
Backup Operator User Pwd Backup Operator username same as password
Disabled Account Blank Pwd Disabled account has blank password
Disabled Account User Pwd Disabled account username same as password
Domain Admin Blank Pwd Domain Administrator account has blank password
Domain Admin No Pwd Domain Administrator has no password
Domain Admin User Pwd Domain Administrator username same as password
Domain Guest Blank Pwd Domain Guest account has blank password
Domain Guest No Pwd Domain Guest has no password
Domain Guest User Pwd Domain Guest username same as password
Domain User Blank Pwd Domain User account has blank password
Domain User No Pwd Domain User has no password
Domain User User Pwd Domain User username same as password
Guessed Account Operator Pwd Account Operator password guessed
Guessed Backup Operator Pwd Backup Operator password guessed
Guessed Disabled Account Pwd Disabled account password guessed
Guessed Domain Administrator Pwd Domain Administrator password guessed
Guessed Domain Guest Pwd Domain Guest password guessed
Guessed Domain User Pwd Domain User password guessed
Guessed Power User Pwd Power User password guessed
Guessed Server Operator Pwd Server Operator password guessed
Max Pwd Age Maximum password age incorrect
Min Pwd Age Minimum password age incorrect
Password Cannot Change Password cannot change
Password Expired Password has expired
Password History Password history length insufficient
Password Never Expires Password never expires
Power User Blank Pwd Power User account has blank password
Power User User Pwd Power User username same as password
Server Operator Blank Pwd Server Operator account has blank password
Service Oper Username Same as Password Server Operator username same as password
Unknown Pwd Filter Unknown password filter installed
guessedadminpw Administrator password guessed
guessedguestpw Guest password guessed
guesseduserpw Windows NT account password guessed
pwlen Minimum password length insufficient
usernopw User account has no password
NT Patches
NT 3.5 Samba .. Bug
NT 4.0 SP3 Windows NT 4.0 prior to Service Pack 3
NT Beta Windows NT 4.0 beta
nt3.51Vuln Samba .. Bug
NT Policy Issues
ClearPageFileAtShutdown Paging file not cleared at shutdown
Display Last Username Last username appears at logon
Legal Notice Windows NT legal notice not enabled
OS/2 Subsystem Enabled OS/2 subsystem enabled
ShutdownWithoutLogon Windows NT Shutdown without logon enabled
multiprotocol Multiple protocols active
perfmon Performance Monitor readable
NT Registry
SysKey Windows NT system key encryption not enabled
Trojan Key Permissions Windows NT trojan key permissions
Writable HKEY_LOCAL - non-admin HKEY_LOCAL_MACHINE writable by non-administrators
Writable LSA Key - non-admin LSA registry key allows full access
Writeable HKEY_CLASSES - everyone HKEY_CLASSES_ROOT writable by Everyone
regfile Regedit is associated with .reg files
regfile - permissions Regfile associations can be changed by non-administrators
registry Windows NT registry opened remotely
registry - null session Registry opened through a null session
scheduler permissions Scheduler Key has incorrect permissions
winreg Registry access unrestricted from network
winreg - everyone Registry access allowed for all users
NT Services
RAS Windows NT remote access service
SQL Server SQL server running
Service User Windows NT service user
Service User Pwd Windows NT service user password found
Unknown NT Service Unknown Windows NT service
messenger Messenger service running
ntrlogin Windows NT rlogin service installed
rcmd Windows NT rcmd service running
rexec Windows NT rexec service running
rshsvc Windows NT rsh service Running
schedule Windows NT schedule service running
Network Sniffers
Network Monitor Windows NT Network Monitor
NT Password
All Access NetBIOS share - Everyone NetBIOS share full access by Everyone group
All Access NetBIOS share found SMB share full access