Overview

This help file contains descriptions of 105 vulnerabilities. These vulnerabilities are listed by category in the following table. You can also view this list of vulnerabilities by risk level or search for a particular vulnerability in the index.

Internet Scanner Vulnerabilities by Risk Level
Category: Vulnerabilities:
High
Account Operator Blank Pwd Account Operator account has blank password
Account Operator User Pwd Account Operator username same as password
All Access NetBIOS share found SMB share full access
Autologon password Autologon password readable
Backup Operator Blank Pwd Backup Operator account has blank password
Backup Operator User Pwd Backup Operator username same as password
Domain Admin Blank Pwd Domain Administrator account has blank password
Domain Admin No Pwd Domain Administrator has no password
Domain Admin User Pwd Domain Administrator username same as password
Domain User Blank Pwd Domain User account has blank password
Domain User No Pwd Domain User has no password
Domain User User Pwd Domain User username same as password
Getadmin Present GetAdmin utility present
Guessed Account Operator Pwd Account Operator password guessed
Guessed Backup Operator Pwd Backup Operator password guessed
Guessed Domain Administrator Pwd Domain Administrator password guessed
Guessed Domain User Pwd Domain User password guessed
Guessed Power User Pwd Power User password guessed
Guessed Server Operator Pwd Server Operator password guessed
NISd Buffer Overflow Rpc.nisd buffer overflow in Solaris
Passfilt.DLL Not Found Passfilt.dll not found
Passfilt.DLL checksum Passfilt.dll checksum incorrect
Power User Blank Pwd Power User account has blank password
Power User User Pwd Power User username same as password
Server Operator Blank Pwd Server Operator account has blank password
Service Oper Username Same as Password Server Operator username same as password
Service User Pwd Windows NT service user password found
Unknown Pwd Filter Unknown password filter installed
Writable LSA Key - non-admin LSA registry key allows full access
guessedadminpw Administrator password guessed
guesseduserpw Windows NT account password guessed
rshsvc Windows NT rsh service Running
usernopw User account has no password
winreg Registry access unrestricted from network
Low
Account Operator Account operator includes unallowed user
Administrator Group Administrators group includes non-default user
Backup Operator Backup Operator group includes non-default user
ClearPageFileAtShutdown Paging file not cleared at shutdown
DCOM - permissions DCOM can be enabled by non-administrators
Display Last Username Last username appears at logon
IP Forwarding IP forwarding enabled
Legal Notice Windows NT legal notice not enabled
Max Pwd Age Maximum password age incorrect
Min Pwd Age Minimum password age incorrect
NIS TCP Running NIS is running over TCP
NIS UDP Running NIS is running over UDP
NT 3.5 Samba .. Bug
OS/2 Subsystem Enabled OS/2 subsystem enabled
PC Anywhere Detect pcAnywhere detected
Passfilt.DLL Not Installed Passfilt.dll not installed
Passfilt.dll incorrect Passfilt.dll unknown version
Password Cannot Change Password cannot change
Password Expired Password has expired
Password History Password history length insufficient
Password Never Expires Password never expires
Power User Power Users group includes non-default user
Print Operator Print Operator group includes non-default user
RAS Windows NT remote access service
Replicator Replicator group includes non-default user
SQL Server SQL server running
ShutdownWithoutLogon Windows NT Shutdown without logon enabled
SysKey Windows NT system key encryption not enabled
System Operator System Operator group includes non-default user
TcpIp Security Windows NT TCP/IP security not enabled
Trusted Domain Windows NT trusted domain
Trusted Host Trusted host(s) found
Unknown NT Service Unknown Windows NT service
messenger Messenger service running
multihomed Multihomed host
multiprotocol Multiple protocols active
nt3.51Vuln Samba .. Bug
ntrlogin Windows NT rlogin service installed
perfmon Performance Monitor readable
rcmd Windows NT rcmd service running
registry Windows NT registry opened remotely
rexec Windows NT rexec service running
schedule Windows NT schedule service running
High
All Access NetBIOS share - Everyone NetBIOS share full access by Everyone group
Disabled Account Blank Pwd Disabled account has blank password
Disabled Account User Pwd Disabled account username same as password
Domain Guest Blank Pwd Domain Guest account has blank password
Domain Guest No Pwd Domain Guest has no password
Domain Guest User Pwd Domain Guest username same as password
Guessed Disabled Account Pwd Disabled account password guessed
Guessed Domain Guest Pwd Domain Guest password guessed
LM security LAN Manager security
NT 4.0 SP3 Windows NT 4.0 prior to Service Pack 3
NT Beta Windows NT 4.0 beta
Network Monitor Windows NT Network Monitor
NisdReserved NISd is running over a non-reserved port
Service User Windows NT service user
Trojan Key Permissions Windows NT trojan key permissions
Writable HKEY_LOCAL - non-admin HKEY_LOCAL_MACHINE writable by non-administrators
Writeable HKEY_CLASSES - everyone HKEY_CLASSES_ROOT writable by Everyone
guessedguestpw Guest password guessed
nisdom NIS server and domain names
nistcp NIS password guessed via TCP
nisudp NIS password guessed via UDP
pwlen Minimum password length insufficient
regfile Regedit is associated with .reg files
regfile - permissions Regfile associations can be changed by non-administrators
registry - null session Registry opened through a null session
scheduler permissions Scheduler Key has incorrect permissions
winlogon permissions Winlogon Key has incorrect permissions
winreg - everyone Registry access allowed for all users