root@ttyp0[pentest]# ****.pl -C all -g -h *.*.*.* -id ****:**** -p 8080
- Target IP: *.*.*.*
- Target Hostname: *.*.*.*
- Target Port: 8080
- Start Time: Tue Mar 29 12:08:36 2005
- Server: Allegro-Software-RomPager/4.06
- Allowed HTTP Methods: GET, HEAD, POST, PUT
- HTTP method 'PUT' method may allow clients to save files on the web server.
- Allegro-Software-RomPager/4.06 appears to be outdated (current is at least 4.07)
- Allegro-Software - Most often a printer or other embedded device
- Allegro-Software-RomPager - Most likely a printer.
- /servlet/org.apache.catalina.ContainerServlet/ - Apache-Tomcat is vulnerable to Cross Site Scripting (XSS) by invoking java classes. CA-2000-02. (GET)
- /servlet/org.apache.catalina.Context/ - Apache-Tomcat is vulnerable to Cross Site Scripting (XSS) by invoking java classes. CA-2000-02. (GET)
- /servlet/org.apache.catalina.Globals/ - Apache-Tomcat is vulnerable to Cross Site Scripting (XSS) by invoking java classes. CA-2000-02. (GET)
- /servlet/org.apache.catalina.servlets.WebdavStatus/ - Apache-Tomcat is vulnerable to Cross Site Scripting (XSS) by invoking java classes. CA-2000-02. (GET)
- /%0a%0a.jsp - Jetty jsp servlet engine is vulnerable to Cross Site Scripting (XSS). CA-2000-02. (GET)
- ///etc/hosts - The server install allows reading of any system file by adding an extra '/' to the URL. (GET)
- //admin/admin.shtml - Axis network camera may allow admin bypass by using double-slashes before URLs. (GET)
- //admin/aindex.htm - FlexWATCH firmware 2.2 is vulnerable to authentication bypass by prepending an extra '/'. http://packetstorm.linuxsecurity.com/0310-exploits/FlexWATCH.txt (GET)
- / - Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02. (GET)
- /.aspx - Cross site scripting (XSS) is allowed with .aspx file requests (may be Microsoft .net). CA-2000-02. (GET)
- /.jsp - Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02. (GET)
- /.shtml - Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02. (GET)
- /.thtml - Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02. (GET)
- /a.jsp/ - JServ is vulnerable to Cross Site Scripting (XSS) when a non-existent JSP file is requested. Upgrade to the latest version of JServ. CA-2000-02. (GET)
- /bb000001.pl - Actinic E-Commerce services is vulnerable to Cross Site Scripting (XSS). CA-2000-02. (GET)
- /index.php/\">< - eZ publish v3 and prior allow Cross Site Scripting (XSS). CA-2000-02. (GET)
- /mailman/listinfo/ - Mailman is vulnerable to Cross Site Scripting (XSS). Upgrade to version 2.0.8 to fix. CA-2000-02. (GET)
- /node/view/666\"> - Drupal 4.2.0 RC is vulnerable to Cross Site Scripting (XSS). CA-2000-02. (GET)
- /pls/help/ - Oracle 9iAS is vulnerable to Cross Site Scripting (XSS). CA-2000-02. (GET)
- /~/.asp - Cross site scripting (XSS) is allowed with .asp file requests (may be Microsoft .net). CA-2000-02 (GET)
- /~/.aspx - Cross site scripting (XSS) is allowed with .aspx file requests (may be Microsoft .net). CA-2000-02 (GET)
- /~/.aspx?aspxerrorpath=null - Cross site scripting (XSS) is allowed with .aspx file requests (may be Microsoft .net). CA-2000-02 (GET)
- /cgi.cgi/betsie/parserl.pl/; - BBC Education Text to Speech Internet Enhancer from http://www.bbc.co.uk/education/betsie/ allows Cross Site Scripting (XSS). CA-2000-02. (GET)
- /webcgi/betsie/parserl.pl/; - BBC Education Text to Speech Internet Enhancer from http://www.bbc.co.uk/education/betsie/ allows Cross Site Scripting (XSS). CA-2000-02. (GET)
- /cgi-914/betsie/parserl.pl/; - BBC Education Text to Speech Internet Enhancer from http://www.bbc.co.uk/education/betsie/ allows Cross Site Scripting (XSS). CA-2000-02. (GET)
- /cgi-915/betsie/parserl.pl/; - BBC Education Text to Speech Internet Enhancer from http://www.bbc.co.uk/education/betsie/ allows Cross Site Scripting (XSS). CA-2000-02. (GET)
- /bin/betsie/parserl.pl/; - BBC Education Text to Speech Internet Enhancer from http://www.bbc.co.uk/education/betsie/ allows Cross Site Scripting (XSS). CA-2000-02. (GET)
- /cgi/betsie/parserl.pl/; - BBC Education Text to Speech Internet Enhancer from http://www.bbc.co.uk/education/betsie/ allows Cross Site Scripting (XSS). CA-2000-02. (GET)
- /mpcgi/betsie/parserl.pl/; - BBC Education Text to Speech Internet Enhancer from http://www.bbc.co.uk/education/betsie/ allows Cross Site Scripting (XSS). CA-2000-02. (GET)
- /cgi-bin/betsie/parserl.pl/; - BBC Education Text to Speech Internet Enhancer from http://www.bbc.co.uk/education/betsie/ allows Cross Site Scripting (XSS). CA-2000-02. (GET)
- /ows-bin/betsie/parserl.pl/; - BBC Education Text to Speech Internet Enhancer from http://www.bbc.co.uk/education/betsie/ allows Cross Site Scripting (XSS). CA-2000-02. (GET)
- Over 30 "OK" messages, this may be a by-product of the
+ server answering all requests with a "200 OK" message. You should
+ manually verify your results.
+ /
cgi-sys/betsie/parserl.pl/; -
BBC Education Text to Speech Internet Enhancer from
http://www.bbc.co.uk/education/betsie/ allows Cross Site Scripting (
XSS). CA-2000-02. (GET)
+ /
cgi-local/betsie/parserl.pl/; -
BBC Education Text to Speech Internet Enhancer from
http://www.bbc.co.uk/education/betsie/ allows Cross Site Scripting (
XSS). CA-2000-02. (GET)
+ /htbin/betsie/parserl.pl/; -
BBC Education Text to Speech Internet Enhancer from
http://www.bbc.co.uk/education/betsie/ allows Cross Site Scripting (
XSS). CA-2000-02. (GET)
+ /cgibin/betsie/parserl.pl/; -
BBC Education Text to Speech Internet Enhancer from
http://www.bbc.co.uk/education/betsie/ allows Cross Site Scripting (
XSS). CA-2000-02. (GET)
+ /cgis/betsie/parserl.pl/; -
BBC Education Text to Speech Internet Enhancer from
http://www.bbc.co.uk/education/betsie/ allows Cross Site Scripting (
XSS). CA-2000-02. (GET)
+ /scripts/betsie/parserl.pl/; -
BBC Education Text to Speech Internet Enhancer from
http://www.bbc.co.uk/education/betsie/ allows Cross Site Scripting (
XSS). CA-2000-02. (GET)
+ /
cgi-win/betsie/parserl.pl/; -
BBC Education Text to Speech Internet Enhancer from
http://www.bbc.co.uk/education/betsie/ allows Cross Site Scripting (
XSS). CA-2000-02. (GET)
+ /
fcgi-bin/betsie/parserl.pl/; -
BBC Education Text to Speech Internet Enhancer from
http://www.bbc.co.uk/education/betsie/ allows Cross Site Scripting (
XSS). CA-2000-02. (GET)
+ /
cgi-exe/betsie/parserl.pl/; -
BBC Education Text to Speech Internet Enhancer from
http://www.bbc.co.uk/education/betsie/ allows Cross Site Scripting (
XSS). CA-2000-02. (GET)
+ /
cgi-home/betsie/parserl.pl/; -
BBC Education Text to Speech Internet Enhancer from
http://www.bbc.co.uk/education/betsie/ allows Cross Site Scripting (
XSS). CA-2000-02. (GET)
+ /
cgi-
perl/betsie/parserl.pl/; -
BBC Education Text to Speech Internet Enhancer from
http://www.bbc.co.uk/education/betsie/ allows Cross Site Scripting (
XSS). CA-2000-02. (GET)
+ / - GoAhead Web Server 2.1 is vulnerable to Cross Site Scripting (
XSS). CA-2000-02. (GET)
+ /\">
- The IBM Web Traffic Express Caching Proxy is vulnerable to Cross Site Scripting (XSS). CA-2000-02. (GET)
+ /nosuchurl/> - JEUS is vulnerable to Cross Site Scripting (XSS) when requesting non-existing JSP pages.
http://securitytracker.com/alerts/2003/Jun/1007004.html (GET)
+ /?Open - This displays a list of all databases on the server. \uffffDisable this capability via server options. (GET)
+ Over 30 "OK" messages, this may be a by-product of the
+ server answering all requests with a "200 OK" message. You should
+ manually verify your results.
+ 15946 items checked - 46 item(s) found on remote host(s)
+ End Time: Tue Mar 29 13:21:58 2005 (4402 seconds)
---------------------------------------------------------------------------
+ 1 host(s) tested