-
Notifications
You must be signed in to change notification settings - Fork 15
Home
Understanding Fingerprints and Vulnerability Checks
Index of cmty vulnerability checks
cmty-memcached-amplification.xml
cmty-memcached-amplification.vck
memcached-restrict.sol
memcached-udp.xml
Summary: Checks for UDP service running memcached and is accessible to the scan engine.
Common location: ./rapid7/nexpose/plugins/java/1/CustomScanner/1/cmty-memcached-amplification.xml ./rapid7/nexpose/plugins/java/1/CustomScanner/1/cmty-memcached-amplification.vck ./rapid7/nexpose/plugins/java/1/CustomScanner/1/memcached-restrict.sol ./rapid7/nexpose/plugins/proto-fp/builtin/memcached-udp.xml
Status: Active
Requires: nmap payloads must be updated to locate memcached on UDP:11211 hopefully this will be pushed as part of a nexpose update at some point. ./rapid7/nexpose/nse/nmap/nmap-payloads https://github.com/nmap/nmap/blob/8f36afdbc693efc6b364d6c13176ab2bc405e275/nmap-payloads
udp 11211
"\0\x01\0\0\0\x01\0\0version\r\n"
xpath_webapps.xml
Summary: Provides signatures used by some of the vulnerability checks below.
Common location: /opt/rapid7/nexpose/plugins/webapp-fp/custom/xpath_webapps.xml
Status: Per signature description within xpath_webapps.xml
cmty-http-ricoh-no-password.xml
cmty-http-ricoh-no-password.vck
Summary: Checks for Un-authenticated access to Ricoh Docment servers.
Common location: /opt/rapid7/nexpose/plugins/java/1/CustomScanner/1/
Status: Active
Requires:
cmty-http-synology-CVE-2013-6955.xml
cmty-http-synology-CVE-2013-6955.vck
cmty-http-synology-CVE-2013-6955_4_0.vck
cmty-http-synology-CVE-2013-6955_4_1.vck
cmty-http-synology-CVE-2013-6955_4_2.vck
cmty-http-synology-CVE-2013-6955_4_3.vck
Summary: Checks Synology disk units for CVE-2013-6955.
Common location: /opt/rapid7/nexpose/plugins/java/1/CustomScanner/1/
Status: Development
Requires: DiskStation signature within xpath_webapps.xml