|
 | 作者: feng_1185 [feng_1185]
 论坛用户 |
登录 |
| X-Scan v2.3 检测报告 [扫描结果索引]: "8。8。8。8" 路由信息 开放端口 Snmp信息 SSL漏洞 RPC漏洞 SQL-Server弱口令 FTP弱口令 NT-Server弱口令 SMTP漏洞 POP3弱口令 CGI漏洞 IIS漏洞 BIND漏洞 Finger漏洞 Sygate漏洞 [NetBios信息] 远程注册表信息 服务器信息 主域控制器名称 网络传输列表 网络会话列表 网络服务器列表 网络磁盘列表 网络共享资源列表 网络用户列表 本地组列表 组列表 网络文件列表 计划任务列表 网络映射列表 -------------------------------------------------------------------------------- 详细资料 [路由信息] 01 0000 ms - 8。8。8。8 [feng] 插件类型: ROUTE 插件成员名称: 路由信息 插件作者: glacier 插件版本: 1.0 风险等级: 无 漏洞描述: "安全焦点"漏洞搜索引擎 "安全焦点"漏洞利用程序搜索引擎 -------------------------------------------------------------------------------- [开放端口] 端口13开放: Daytime [Banner] 8:54:18 2003-12-15 [End of banner] 端口17开放: Quote of the Day [Banner] "In Heaven an angel is nobody in particular." George Bernard Shaw (1856-1950) [End of banner] 端口19开放: Character Generator [Banner] !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefg !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefgh "#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghi #$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghij $%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijk %&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijkl &'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklm '()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmn ()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmno )*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnop *+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopq +,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqr ,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrs -./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghij [End of banner] 端口21开放: FTP (Control) [Banner] 220 你Y又来了!!! [End of banner] 端口25开放: SMTP, Simple Mail Transfer Protocol [Banner] 220 feng Microsoft ESMTP MAIL Service, Version: 6.0.2600.1 ready at Mon, 15 Dec 2003 08:54:21 +0800 [End of banner] 端口80开放: HTTP, World Wide Web [Banner] HTTP/1.1 302 Object moved Server: Microsoft-IIS/5.1 Date: Mon, 15 Dec 2003 00:54:39 GMT Location: localstart.asp Connection: Keep-Alive Content-Length: 135 Content-Type: text/html Set-Cookie: ASPSESSIONIDGGGQGHSC=HCJHCDICJLBKMFPFNKLHDCGB; path=/ Cache-control: private [End of banner] 端口9开放: Discard [Banner] [None] [End of banner] 端口7开放: Echo [Banner] [None] [End of banner] 端口135开放: Location Service [Banner] [None] [End of banner] 端口139开放: NETBIOS Session Service [Banner] [None] [End of banner] 端口443开放: HttpS, Secure HTTP [Banner] [None] [End of banner] 端口5000开放: Windows XP UPNP [Banner] [None] [End of banner] 插件类型: PORT 插件成员名称: 开放端口 插件作者: glacier 插件版本: 1.7 风险等级: 低 漏洞描述: "安全焦点"漏洞搜索引擎 "安全焦点"漏洞利用程序搜索引擎 -------------------------------------------------------------------------------- [Snmp信息] -------------------------------------------------------------------------------- [SSL漏洞] -------------------------------------------------------------------------------- [RPC漏洞] -------------------------------------------------------------------------------- [SQL-Server弱口令] -------------------------------------------------------------------------------- [FTP弱口令] -------------------------------------------------------------------------------- [NT-Server弱口令] -------------------------------------------------------------------------------- [NetBios信息] [远程注册表信息]: [ProductName]: Microsoft Windows XP [SOFTWARE\Microsoft\Windows NT\CurrentVersion]: RegDone: 1 CurrentBuild: 1.511.1 () (Obsolete data - do not use) InstallDate: CE 42 D1 3F ProductName: Microsoft Windows XP RegisteredOrganization: kygs RegisteredOwner: abcd SoftwareType: SYSTEM CurrentVersion: 5.1 CurrentBuildNumber: 2600 BuildLab: 2600.xpclient.010817-1148 CurrentType: Uniprocessor Free SystemRoot: D:\WINDOWS SourcePath: G:\ PathName: D:\WINDOWS ProductId: 55274-640-0059266-23953 DigitalProductId: A4 00 00 00 03 00 00 00 35 35 32 37 34 2D 36 34 30 2D 30 30 35 39 32 36 36 2D 32 33 39 35 33 00 2E 00 00 00 41 32 32 2D 30 30 30 30 31 00 00 00 00 00 00 00 4C 6E 4B CC 8A 8A A6 9C AF C0 B9 31 01 91 00 00 00 00 00 00 83 AA D1 3F 3B 96 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 36 37 35 32 32 00 00 00 00 00 00 00 28 0E 00 00 0C 12 4C 39 F8 00 00 00 05 0F 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 91 F8 CF 58 LicenseInfo: 34 8F FF E3 0A 44 2E 3D 5E 3E E3 F0 61 E2 B6 19 A9 D8 94 49 B0 5B DA 6A 2D 8E FB 2F 21 4B 37 B9 CE CE 6E A9 A5 13 56 DB 1B D4 A1 94 22 B3 57 56 EB DB 49 77 6E F5 96 CD [SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]: PowerdownAfterShutdown: 0 Shell: Explorer.exe System: Userinit: D:\WINDOWS\system32\userinit.exe, VmApplet: rundll32 shell32,Control_RunDLL "sysdm.cpl" SfcQuota: FF FF FF FF PreloadFontFile: simsun cachedlogonscount: 10 passwordexpirywarning: 0E 00 00 00 scremoveoption: 0 UIHost: 6C 6F 67 6F 6E 75 69 2E 65 78 65 00 DebugServerCommand: no SFCDisable: 00 00 00 00 WinStationsDisabled: 0 HibernationPreviouslyEnabled: 01 00 00 00 AltDefaultUserName: abcd's AltDefaultDomainName: abcd IgnoreShiftOverride: 00 00 00 00 AutoAdminLogon: 0 ForceAutoLogon: 0 ShowLogonOptions: 01 00 00 00 ShutdownWithoutLogon: 0 DisableCAD: 01 00 00 00 AllowMultipleTSSessions: 00 00 00 00 LogonType: 00 00 00 00 DontDisplayLastUserName: 00 00 00 00 ForceUnlockLogon: 00 00 00 00 AllocateCDRoms: 0 AllocateFloppies: 0 AutoRestartShell: 01 00 00 00 ReportBootOk: 1 DefaultUserName: abcd's DefaultDomainName: abcd LegalNoticeCaption: LegalNoticeText: [SOFTWARE\Microsoft\Windows NT\CurrentVersion\HotFix]: [SOFTWARE\Microsoft\Windows NT\CurrentVersion\HotFix\Q147222]: Installed: 01 00 00 00 插件类型: NETBIOS 插件成员名称: NetBios信息 插件作者: glacier 插件版本: 1.1 风险等级: 高 漏洞描述: "安全焦点"漏洞搜索引擎 "安全焦点"漏洞利用程序搜索引擎 -------------------------------------------------------------------------------- [SMTP漏洞] Timeout, terminated by force. -------------------------------------------------------------------------------- [POP3弱口令] -------------------------------------------------------------------------------- [CGI漏洞] 无法打开文件"C:\unzipped\X-Scan-v2.3-cn\dat\cgi.lst" -------------------------------------------------------------------------------- [IIS漏洞] 无法打开文件"C:\unzipped\X-Scan-v2.3-cn\dat\cgi.lst" -------------------------------------------------------------------------------- [BIND漏洞] -------------------------------------------------------------------------------- [Finger漏洞] -------------------------------------------------------------------------------- [Sygate漏洞] -------------------------------------------------------------------------------- 扫描全部完成 [此贴被 风(feng_1185) 在 12月15日09时16分 编辑过] |
| 地主 发表时间: 12/15 09:28 |
 | 回复: lida1818 [lida1818]  论坛用户 |
登录 |
|
呵呵~~~其它的不知道,这个绝对是漏洞 [CGI漏洞] 无法打开文件"C:\unzipped\X-Scan-v2.3-cn\dat\cgi.lst" -------------------------------------------------------------------------------- [IIS漏洞] 无法打开文件"C:\unzipped\X-Scan-v2.3-cn\dat\cgi.lst"  |
| B1层 发表时间: 12/15 13:03 |
| 回复: feng_1185 [feng_1185] 论坛用户 |
登录 |
|
呵呵~~~多谢了~~~ |
| B2层 发表时间: 12/15 13:06 |
 | 回复: yufirst [yufirst]  论坛用户 |
登录 |
不是吧?无法打开自己的文件,这个也算漏洞? |
| B3层 发表时间: 12/15 13:10 |
 | 回复: fjs [fjs]  论坛用户 |
登录 |
|
即使只有NetBios也是漏洞的 |
| B4层 发表时间: 12/15 13:16 |
 | 回复: bridex [bridex] 论坛用户 |
登录 |
|
端口19开放: Character Generator [Banner] !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefg !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefgh "#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghi #$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghij $%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijk %&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijkl &'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklm '()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmn ()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmno )*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnop *+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopq +,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqr ,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrs -./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghij [End of banner] 这个是什么意思? |
| B5层 发表时间: 12/15 14:57 |
 | 回复: zjh1982410 [zjh1982410] 论坛用户 |
登录 |
|
看看没什么可用的~~~!!!!!! 楼主真变态~ 用X-SCAN的时候居然一次选这么多~~~~~~~ ~ |
| B6层 发表时间: 12/15 23:04 |
|
20CN网络安全小组版权所有
Copyright © 2000-2010 20CN Security Group. All Rights Reserved.
论坛程序编写:NetDemon
粤ICP备05087286号
论坛: 菜鸟乐园 标题: 请问这些算不算漏洞~~~