| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| NETBIOS share information may be published through SNMP registry keys in NT. |
| A mail server is explicitly configured to allow SMTP mail relay, which allows abuse by spammers. |
| ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of service. |
| UDP messages to broadcast addresses are allowed, allowing for a Fraggle attack that can cause a denial of service by flooding the target. |
| An unrestricted remote trust relationship for Unix systems has been set up, e.g. by using a + sign in /etc/hosts.equiv. |
| An SNMP community name is guessable. |
| A NETBIOS/SMB share password is the default, null, or missing. |
| A system-critical NETBIOS/SMB share has inappropriate access control. |
| An SNMP community name is the default (e.g. public), null, or missing. |
| A NETBIOS/SMB share password is guessable. |
| The permissions for a system-critical NIS+ table (e.g. passwd) are inappropriate. |
| ICMP echo (ping) is allowed from arbitrary hosts. |
| A superfluous NFS server is running, but it is not importing or exporting any file systems. |
| Windows NT automatically logs in an administrator upon rebooting. |
| A router's routing tables can be obtained from arbitrary hosts. |
| NFS exports system-critical data to the world, e.g. / or a password file. |
| A Unix account with a name other than "root" has UID 0, i.e. root privileges. |
| Two or more Unix accounts have the same UID. |
| A system-critical Unix file or directory has inappropriate permissions. |
| A system-critical Windows NT file or directory has inappropriate permissions. |
