Deloitte Informe Nessus

deloitte
Report generated by Nessus™ Sun, 21 Aug 2022 22:22:05 EDT

TABLE OF CONTENTS
Vulnerabilities by Host
• 192.168.110.131...................................................................................................................................................4
Vulnerabilities by Host
192.168.110.131
0 0 0 0 45
CRITICAL HIGH MEDIUM LOW INFO
Scan Information
Start time: Sun Aug 21 22:13:19 2022

End time: Sun Aug 21 22:22:05 2022
Host Information
IP: 192.168.110.131
MAC Address: 00:0C:29:96:77:2F
OS: Linux Kernel 4.4 on Ubuntu 16.04 (xenial)
Vulnerabilities
18261 - Apache Banner Linux Distribution Disclosure
Synopsis
The name of the Linux distribution running on the remote host was found in the banner of the web server.
Description
Nessus was able to extract the banner of the Apache web server and determine which Linux distribution the
remote host is running.
Solution
If you do not wish to display this information, edit 'httpd.conf' and set the directive 'ServerTokens Prod' and
restart Apache.
Risk Factor
None
Plugin Information
Published: 2005/05/15, Modified: 2022/03/21
Plugin Output
192.168.110.131 4
tcp/0
The Linux distribution detected was :

- Ubuntu 16.04 (xenial)
- Ubuntu 16.10 (yakkety)
192.168.110.131 5
48204 - Apache HTTP Server Version
Synopsis
It is possible to obtain the version number of the remote Apache HTTP server.
Description
The remote host is running the Apache HTTP Server, an open source web server. It was possible to read the
version number from the banner.
See Also
https://httpd.apache.org/
Solution
n/a
Risk Factor
None
References
XREF IAVT:0001-T-0530
Plugin Information
Plugin Output
tcp/80/www
URL : http://192.168.110.131/
Version : 2.4.99
backported : 1
os : ConvertedUbuntu
192.168.110.131 6
39519 - Backported Security Patch Detection (FTP)
Synopsis
Security patches are backported.
Description
Security patches may have been 'backported' to the remote FTP server without changing its version number.
Banner-based checks have been disabled to avoid false positives.
Note that this test is informational only and does not denote any security problem.
See Also
https://access.redhat.com/security/updates/backporting/?sc_cid=3093
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/21/ftp
Give Nessus credentials to perform local checks.
192.168.110.131 7
39520 - Backported Security Patch Detection (SSH)
Synopsis
Description
Security patches may have been 'backported' to the remote SSH server without changing its version number.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
192.168.110.131 8
39521 - Backported Security Patch Detection (WWW)
Synopsis
Description
Security patches may have been 'backported' to the remote HTTP server without changing its version number.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
192.168.110.131 9
45590 - Common Platform Enumeration (CPE)
Synopsis
It was possible to enumerate CPE names that matched on the remote system.
Description
By using information obtained from a Nessus scan, this plugin reports CPE (Common Platform Enumeration)
matches for various hardware and software products found on a host.
Note that if an official CPE is not available for the product, this plugin computes the best possible CPE based on
the information available from the scan.
See Also
http://cpe.mitre.org/
https://nvd.nist.gov/products/cpe
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
The remote operating system matched the following CPE :
cpe:/o:canonical:ubuntu_linux:16.04 -> Canonical Ubuntu Linux
Following application CPE's matched on the remote system :
cpe:/a:apache:http_server:2.4.18 -> Apache Software Foundation Apache HTTP Server

cpe:/a:apache:http_server:2.4.99 -> Apache Software Foundation Apache HTTP Server
cpe:/a:openbsd:openssh:7.2 -> OpenBSD OpenSSH
192.168.110.131 10
54615 - Device Type
Synopsis
It is possible to guess the remote device type.
Description
Based on the remote operating system, it is possible to determine what the remote system type is (eg: a printer,
router, general-purpose computer, etc).
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
Remote device type : general-purpose

Confidence level : 95
192.168.110.131 11
35716 - Ethernet Card Manufacturer Detection
Synopsis
The manufacturer can be identified from the Ethernet OUI.
Description
Each ethernet MAC address starts with a 24-bit Organizationally Unique Identifier (OUI). These OUIs are
registered by IEEE.
See Also
https://standards.ieee.org/faqs/regauth.html
http://www.nessus.org/u?794673b4
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
The following card manufacturers were identified :
00:0C:29:96:77:2F : VMware, Inc.
192.168.110.131 12
86420 - Ethernet MAC Addresses
Synopsis
This plugin gathers MAC addresses from various sources and consolidates them into a list.
Description
This plugin gathers MAC addresses discovered from both remote probing of the host (e.g. SNMP and Netbios)
and from running local checks (e.g. ifconfig). It then consolidates the MAC addresses into a single, unique, and
uniform list.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
The following is a consolidated list of detected MAC addresses:

- 00:0C:29:96:77:2F
192.168.110.131 13
10092 - FTP Server Detection
Synopsis
An FTP server is listening on a remote port.
Description
It is possible to obtain the banner of the remote FTP server by connecting to a remote port.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/21/ftp
The remote FTP banner is :
220 (vsFTPd 3.0.3)
192.168.110.131 14
10107 - HTTP Server Type and Version
Synopsis
A web server is running on the remote host.
Description
This plugin attempts to determine the type and the version of the remote web server.
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/80/www
The remote web server type is :
Apache/2.4.18 (Ubuntu)
192.168.110.131 15
24260 - HyperText Transfer Protocol (HTTP) Information
Synopsis
Some information about the remote HTTP configuration can be extracted.
Description
This test gives some information about the remote HTTP protocol - the version used, whether HTTP Keep-Alive
and HTTP pipelining are enabled, etc...
This test is informational only and does not denote any security problem.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
Response Code : HTTP/1.1 200 OK
Protocol version : HTTP/1.1

SSL : no
Keep-Alive : yes
Options allowed : (Not implemented)
Headers :
Date: Mon, 22 Aug 2022 02:16:04 GMT

Server: Apache/2.4.18 (Ubuntu)
Vary: Accept-Encoding
Content-Length: 456
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
Response Body :
<html>
<head>
<link rel="stylesheet" href="estilos.css"/>
<title>Retos Web</title>
<body>
<h1>Bienvenido</h1>
<p>Aquí tienes una lista de retos, pero quizás no sean los únicos
disponibles.</p>
<ul>
192.168.110.131 16
<li><a href="login_1/" target="_blank">Bypass Login 1</a></li>
<li><a href="login_2/" target="_blank">Bypass Login 2</a></li>
<li><a href="ping/" target="_blank">Ping - Pong</a></li>
</body>
</html>

192.168.110.131 17
10114 - ICMP Timestamp Request Remote Date Disclosure
Synopsis
It is possible to determine the exact time set on the remote host.
Description
The remote host answers to an ICMP timestamp request. This allows an attacker to know the date that is
set on the targeted machine, which may assist an unauthenticated, remote attacker in defeating time-based
authentication protocols.
Timestamps returned from machines running Windows Vista / 7 / 2008 / 2008 R2 are deliberately incorrect, but
usually within 1000 seconds of the actual system time.
Solution
Filter out the ICMP timestamp requests (13), and the outgoing ICMP timestamp replies (14).
Risk Factor
None
CVSS v3.0 Base Score
0.0 (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N)
CVSS v2.0 Base Score
0.0 (CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:N)
References
CVE CVE-1999-0524
XREF CWE:200
Plugin Information
Plugin Output
icmp/0
The remote clock is synchronized with the local clock.
192.168.110.131 18
11219 - Nessus SYN scanner
Synopsis
It is possible to determine which TCP ports are open.
Description
This plugin is a SYN 'half-open' port scanner. It shall be reasonably quick even against a firewalled target.
Note that SYN scans are less intrusive than TCP (full connect) scans against broken services, but they might
cause problems for less robust firewalls and also leave unclosed connections on the remote target, if the
network is loaded.
Solution
Protect your target with an IP filter.
Risk Factor
None
Plugin Information
Plugin Output
tcp/21/ftp
Port 21/tcp was found to be open
192.168.110.131 19
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
192.168.110.131 20
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/25/smtp
192.168.110.131 21
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
192.168.110.131 22
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/110/pop3
192.168.110.131 23
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/119/nntp
192.168.110.131 24
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/4555
192.168.110.131 25
19506 - Nessus Scan Information
Synopsis
This plugin displays information about the Nessus scan.
Description
This plugin displays, for each tested host, information about the scan itself :
- The version of the plugin set.

- The type of scanner (Nessus or Nessus Home).
- The version of the Nessus Engine.
- The port scanner(s) used.
- The port range scanned.
- The ping round trip time
- Whether credentialed or third-party patch management checks are possible.
- Whether the display of superseded patches is enabled
- The date of the scan.
- The duration of the scan.
- The number of hosts scanned in parallel.
- The number of checks done in parallel.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
Information about this scan :
Nessus version : 8.15.5

Nessus build : 20010
Plugin feed version : 202208211341
Scanner edition used : Nessus Home
Scanner OS : LINUX
Scanner distribution : debian6-x86-64
Scan type : Normal
Scan name : deloitte
192.168.110.131 26
Scan policy used : Advanced Scan
Scanner IP : 192.168.110.128
Port scanner(s) : nessus_syn_scanner
Port range : default
Ping RTT : 102.351 ms
Thorough tests : no
Experimental tests : no
Plugin debugging enabled : no
Paranoia level : 1
Report verbosity : 1
Safe checks : yes
Optimize the test : yes
Credentialed checks : no
Patch management checks : None
Display superseded patches : yes (supersedence plugin launched)
CGI scanning : disabled
Web application tests : disabled
Max hosts : 100
Max checks : 5
Recv timeout : 5
Backports : Detected
Allow post-scan editing : Yes
Scan Start Date : 2022/8/21 22:13 EDT
Scan duration : 510 sec
192.168.110.131 27
11033 - News Server (NNTP) Information Disclosure
Synopsis
Information about the remote NNTP server can be collected.
Description
By probing the remote NNTP server, Nessus is able to collect information about it, such as whether it allows
remote connections, the number of newsgroups, etc.
Solution
Disable this server if it is not used.
Risk Factor
None
Plugin Information
Plugin Output
tcp/119/nntp
This NNTP server allows unauthenticated connections.

For your information, we counted 4 newsgroups on this NNTP server:\n0 in the alt hierarchy, 0 in
rec, 0 in biz, 0 in sci, 0 in soc, 0 in misc, 0 in news, 0 in comp, 0 in talk, 0 in microsoft, 0 in
humanities.\nAlthough this server accepted our test message for delivery, we were unable to read it
again.
192.168.110.131 28
11936 - OS Identification
Synopsis
It is possible to guess the remote operating system.
Description
Using a combination of remote probes (e.g., TCP/IP, SMB, HTTP, NTP, SNMP, etc.), it is possible to guess the
name of the remote operating system in use. It is also possible sometimes to guess the version of the operating
system.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
Remote operating system : Linux Kernel 4.4 on Ubuntu 16.04 (xenial)

Confidence level : 95
Method : SSH
Not all fingerprints could give a match. If you think some or all of
the following could be used to identify the host's operating system,
please email them to os-signatures@nessus.org. Be sure to include a
brief description of the host itself, such as the actual operating
system or product / model names.
SSH:SSH-2.0-OpenSSH_7.2p2 Ubuntu-4ubuntu2.2
SinFP:
P1:B10113:F0x12:W29200:O0204ffff:M1460:
P2:B10113:F0x12:W28960:O0204ffff0402080affffffff4445414401030307:M1460:
P3:B00000:F0x00:W0:O0:M0
P4:181505_7_p=119
SMTP:!:220 ubuntu SMTP Server (JAMES SMTP Server 2.3.2.1) ready Sun, 21 Aug 2022 19:13:42 -0700
(PDT)
The remote host is running Linux Kernel 4.4 on Ubuntu 16.04 (xenial)
192.168.110.131 29
117886 - OS Security Patch Assessment Not Available
Synopsis
OS Security Patch Assessment is not available.
Description
OS Security Patch Assessment is not available on the remote host.

This does not necessarily indicate a problem with the scan.
Credentials may not have been provided, OS security patch assessment may not be supported for the target,
the target may not have been identified, or another issue may have occurred that prevented OS security patch
assessment from being available. See plugin output for details.
This plugin reports non-failure information impacting the availability of OS Security Patch Assessment. Failure
information is reported by plugin 21745 : 'OS Security Patch Assessment failed'. If a target host is not supported
for OS Security Patch Assessment, plugin 110695 : 'OS Security Patch Assessment Checks Not Supported' will
report concurrently with this plugin.
Solution
n/a
Risk Factor
None
References
XREF IAVB:0001-B-0515
Plugin Information
Plugin Output
tcp/0
The following issues were reported :
- Plugin : no_local_checks_credentials.nasl
Plugin ID : 110723
Plugin Name : Target Credential Status by Authentication Protocol - No Credentials Provided
Message :
Credentials were not provided for detected SSH service.
192.168.110.131 30
10185 - POP Server Detection
Synopsis
A POP server is listening on the remote port.
Description
The remote host is running a server that understands the Post Office Protocol (POP), used by email clients to
retrieve messages from a server, possibly across a network link.
See Also
https://en.wikipedia.org/wiki/Post_Office_Protocol
Solution
Disable this service if you do not use it.
Risk Factor
None
Plugin Information
Plugin Output
tcp/110/pop3
Remote POP server banner :
+OK ubuntu POP3 server (JAMES POP3 Server 2.3.2.1) ready
192.168.110.131 31
10263 - SMTP Server Detection
Synopsis
An SMTP server is listening on the remote port.
Description
The remote host is running a mail (SMTP) server on this port.
Since SMTP servers are the targets of spammers, it is recommended you disable it if you do not use it.
Solution
Disable this service if you do not use it, or filter incoming traffic to this port.
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/25/smtp
Remote SMTP server banner :
220 ubuntu SMTP Server (JAMES SMTP Server 2.3.2.1) ready Sun, 21 Aug 2022 19:13:42 -0700 (PDT)
192.168.110.131 32
70657 - SSH Algorithms and Languages Supported
Synopsis
An SSH server is listening on this port.
Description
This script detects which algorithms and languages are supported by the remote service for encrypting
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
Nessus negotiated the following encryption algorithm with the server :
The server supports the following options for kex_algorithms :
curve25519-sha256@libssh.org
diffie-hellman-group-exchange-sha256
diffie-hellman-group14-sha1
ecdh-sha2-nistp256
ecdh-sha2-nistp384
ecdh-sha2-nistp521
The server supports the following options for server_host_key_algorithms :
ecdsa-sha2-nistp256
rsa-sha2-256
rsa-sha2-512
ssh-ed25519
ssh-rsa
The server supports the following options for encryption_algorithms_client_to_server :
aes128-ctr
aes128-gcm@openssh.com
aes192-ctr
aes256-ctr
chacha20-poly1305@openssh.com
The server supports the following options for encryption_algorithms_server_to_client :
192.168.110.131 33
aes128-ctr
aes192-ctr
aes256-ctr
chacha20-poly1305@openssh.com
The server supports the following options for mac_algorithms_client_to_server :
hmac-sha1
hmac-sha1-etm@openssh.com
hmac-sha2-256
hmac-sha2-256-etm@openssh.com
hmac-sha2-512
umac-128-etm@openssh.com
umac-128@openssh.com
umac-64@openssh.com
The server supports the following options for mac_algorithms_server_to_client :
hmac-sha1
hmac-sha2-256
hmac-sha2-512
umac-128@openssh.com
umac-64@openssh.com
The server supports the following options for compression_algorithms_client_to_server :
none
zlib@openssh.com
The server supports the following options for compression_algorithms_server_to_client :
none
zlib@openssh.com
192.168.110.131 34
149334 - SSH Password Authentication Accepted
Synopsis
The SSH server on the remote host accepts password authentication.
Description
The SSH server on the remote host accepts password authentication.
See Also
https://tools.ietf.org/html/rfc4252#section-8
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
192.168.110.131 35
10881 - SSH Protocol Versions Supported
Synopsis
A SSH server is running on the remote host.
Description
This plugin determines the versions of the SSH protocol supported by the remote SSH daemon.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
The remote SSH daemon supports the following versions of the

SSH protocol :
- 1.99
- 2.0
192.168.110.131 36
153588 - SSH SHA-1 HMAC Algorithms Enabled
Synopsis
The remote SSH server is configured to enable SHA-1 HMAC algorithms.
Description
The remote SSH server is configured to enable SHA-1 HMAC algorithms.
Although NIST has formally deprecated use of SHA-1 for digital signatures, SHA-1 is still considered secure for
HMAC as the security of HMAC does not rely on the underlying hash function being resistant to collisions.
Note that this plugin only checks for the options of the remote SSH server.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
The following client-to-server SHA-1 Hash-based Message Authentication Code (HMAC) algorithms are
supported :
hmac-sha1
The following server-to-client SHA-1 Hash-based Message Authentication Code (HMAC) algorithms are
supported :
hmac-sha1
192.168.110.131 37
10267 - SSH Server Type and Version Information
Synopsis
An SSH server is listening on this port.
Description
It is possible to obtain information about the remote SSH server by sending an empty authentication request.
Solution
n/a
Risk Factor
None
References
Plugin Information
Plugin Output
tcp/22/ssh
SSH version : SSH-2.0-OpenSSH_7.2p2 Ubuntu-4ubuntu2.2

SSH supported authentication : publickey,password
192.168.110.131 38
22964 - Service Detection
Synopsis
The remote service could be identified.
Description
Nessus was able to identify the remote service by its banner or by looking at the error message it sends when it
receives an HTTP request.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/21/ftp
An FTP server is running on this port.
192.168.110.131 39
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/22/ssh
An SSH server is running on this port.
192.168.110.131 40
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/25/smtp
An SMTP server is running on this port.
192.168.110.131 41
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
A web server is running on this port.
192.168.110.131 42
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/110/pop3
A POP3 server is running on this port.
192.168.110.131 43
14773 - Service Detection: 3 ASCII Digit Code Responses
Synopsis
This plugin performs service detection.
Description
This plugin is a complement of find_service1.nasl. It attempts to identify services that return 3 ASCII digits codes
(ie: FTP, SMTP, NNTP, ...)
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/119/nntp
A NNTP server is running on this port
192.168.110.131 44
25220 - TCP/IP Timestamps Supported
Synopsis
The remote service implements TCP timestamps.
Description
The remote host implements TCP timestamps, as defined by RFC1323. A side effect of this feature is that the
uptime of the remote host can sometimes be computed.
See Also
http://www.ietf.org/rfc/rfc1323.txt
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
192.168.110.131 45
110723 - Target Credential Status by Authentication Protocol - No Credentials Provided
Synopsis
Nessus was able to find common ports used for local checks, however, no credentials were provided in the scan
policy.
Description
Nessus was not able to successfully authenticate directly to the remote target on an available authentication
protocol. Nessus was able to connect to the remote port and identify that the service running on the port
supports an authentication protocol, but Nessus failed to authenticate to the remote service using the provided
credentials. There may have been a protocol failure that prevented authentication from being attempted or all of
the provided credentials for the authentication protocol may be invalid. See plugin output for error details.
Please note the following :
- This plugin reports per protocol, so it is possible for valid credentials to be provided for one protocol and not
another. For example, authentication may succeed via SSH but fail via SMB, while no credentials were provided
for an available SNMP service.
- Providing valid credentials for all available authentication protocols may improve scan coverage, but the value
of successful authentication for a given protocol may vary from target to target depending upon what data (if any)
is gathered from the target via that protocol. For example, successful authentication via SSH is more valuable
for Linux targets than for Windows targets, and likewise successful authentication via SMB is more valuable for
Windows targets than for Linux targets.
Solution
n/a
Risk Factor
None
References
XREF IAVB:0001-B-0504
Plugin Information
Plugin Output
tcp/0
SSH was detected on port 22 but no credentials were provided.

SSH local checks were not enabled.
192.168.110.131 46
10287 - Traceroute Information
Synopsis
It was possible to obtain traceroute information.
Description
Makes a traceroute to the remote host.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/0
For your information, here is the traceroute from 192.168.110.128 to 192.168.110.131 :

192.168.110.128
192.168.110.131
Hop Count: 1
192.168.110.131 47
66293 - Unix Operating System on Extended Support
Synopsis
The remote host is running an operating system that is on extended support.
Description
According to its version, the remote host uses a Unix or Unix-like operating system that has transitioned to an
extended portion in its support life cycle. Continued access to new security updates requires payment of an
additional fee and / or configuration changes to the package management tool. Without that, the host likely will
be missing security updates.
Solution
Ensure that the host subscribes to the vendor's extended support plan and continues to receive security
updates.
Risk Factor
None
References
XREF IAVA:0001-A-0648
Plugin Information
Plugin Output
tcp/0
Ubuntu 16.04 support ends on 2021-04-30 (end of maintenance) / 2026-04-30 (end of extended security
maintenance).
192.168.110.131 48
11154 - Unknown Service Detection: Banner Retrieval
Synopsis
There is an unknown service running on the remote host.
Description
Nessus was unable to identify a service on the remote host even though it returned a banner of some type.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/4555
If you know what this service is and think the banner could be used to
identify it, please send a description of the service along with the
following output to svc-signatures@nessus.org :
Port : 4555
Type : spontaneous
Banner :
0x00: 4A 41 4D 45 53 20 52 65 6D 6F 74 65 20 41 64 6D JAMES Remote Adm
0x10: 69 6E 69 73 74 72 61 74 69 6F 6E 20 54 6F 6F 6C inistration Tool
0x20: 20 32 2E 33 2E 32 2E 31 0A 50 6C 65 61 73 65 20 2.3.2.1.Please
0x30: 65 6E 74 65 72 20 79 6F 75 72 20 6C 6F 67 69 6E enter your login
0x40: 20 61 6E 64 20 70 61 73 73 77 6F 72 64 0A 4C 6F and password.Lo
0x50: 67 69 6E 20 69 64 3A 0A gin id:.
192.168.110.131 49
20094 - VMware Virtual Machine Detection
Synopsis
The remote host is a VMware virtual machine.
Description
According to the MAC address of its network adapter, the remote host is a VMware virtual machine.
Solution
Since it is physically accessible through the network, ensure that its configuration matches your organization's
security policy.
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
The remote host is a VMware virtual machine.
192.168.110.131 50
10302 - Web Server robots.txt Information Disclosure
Synopsis
The remote web server contains a 'robots.txt' file.
Description
The remote host contains a file named 'robots.txt' that is intended to prevent web 'robots' from visiting certain
directories in a website for maintenance or indexing purposes. A malicious user may also be able to use the
contents of this file to learn of sensitive documents or directories on the affected site and either retrieve them
directly or target them for other attacks.
See Also
http://www.robotstxt.org/orig.html
Solution
Review the contents of the site's robots.txt file, use Robots META tags instead of entries in the robots.txt file,
and/or adjust the web server's access controls to limit access to sensitive material.
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
Contents of robots.txt :
User-agent: *
Disallow: /cyberacademy
192.168.110.131 51
52703 - vsftpd Detection
Synopsis
An FTP server is listening on the remote port.
Description
The remote host is running vsftpd, an FTP server for UNIX-like systems written in C.
See Also
http://vsftpd.beasts.org/
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/21/ftp
Source : 220 (vsFTPd 3.0.3)

Version : 3.0.3
192.168.110.131 52

Deloitte Informe Nessus

Uploaded by

Copyright:

Available Formats

Deloitte Informe Nessus

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Deloitte Informe Nessus

Uploaded by

Copyright:

Available Formats

deloitte

Report generated by Nessus™ Sun, 21 Aug 2022 22:22:05 EDT

Start time: Sun Aug 21 22:13:19 2022

Published: 2005/05/15, Modified: 2022/03/21

The Linux distribution detected was :

Published: 2010/07/30, Modified: 2020/09/22

Security patches are backported.

Banner-based checks have been disabled to avoid false positives.

Published: 2009/06/25, Modified: 2015/07/07

Give Nessus credentials to perform local checks.

Security patches are backported.

Banner-based checks have been disabled to avoid false positives.

Published: 2009/06/25, Modified: 2015/07/07

Give Nessus credentials to perform local checks.

Security patches are backported.

Banner-based checks have been disabled to avoid false positives.

Published: 2009/06/25, Modified: 2015/07/07

Give Nessus credentials to perform local checks.

Published: 2010/04/21, Modified: 2022/07/19

The remote operating system matched the following CPE :

cpe:/o:canonical:ubuntu_linux:16.04 -> Canonical Ubuntu Linux

Following application CPE's matched on the remote system :

cpe:/a:apache:http_server:2.4.18 -> Apache Software Foundation Apache HTTP Server

It is possible to guess the remote device type.

Published: 2011/05/23, Modified: 2011/05/23

Remote device type : general-purpose

The manufacturer can be identified from the Ethernet OUI.

Published: 2009/02/19, Modified: 2020/05/13

The following card manufacturers were identified :

00:0C:29:96:77:2F : VMware, Inc.

Published: 2015/10/16, Modified: 2020/05/13

The following is a consolidated list of detected MAC addresses:

An FTP server is listening on a remote port.

Published: 1999/10/12, Modified: 2019/11/22

The remote FTP banner is :

220 (vsFTPd 3.0.3)

A web server is running on the remote host.

Published: 2000/01/04, Modified: 2020/10/30

The remote web server type is :

Some information about the remote HTTP configuration can be extracted.

Published: 2007/01/30, Modified: 2019/11/22

Response Code : HTTP/1.1 200 OK

Protocol version : HTTP/1.1

Date: Mon, 22 Aug 2022 02:16:04 GMT

It is possible to determine the exact time set on the remote host.

CVSS v3.0 Base Score

CVSS v2.0 Base Score

Published: 1999/08/01, Modified: 2019/10/04

The remote clock is synchronized with the local clock.

It is possible to determine which TCP ports are open.

Protect your target with an IP filter.

Published: 2009/02/04, Modified: 2022/07/19

Port 21/tcp was found to be open

It is possible to determine which TCP ports are open.

Protect your target with an IP filter.

Published: 2009/02/04, Modified: 2022/07/19

Port 22/tcp was found to be open

It is possible to determine which TCP ports are open.

Protect your target with an IP filter.