Nessus Report

Nessus Scan Report

27/Jun/2013:05:19:58

Table Of Contents
Remediations
Suggested Remediations
Hosts Summary (Executive)
192.168.1.28

Remediations

[-] Collapse All
[+] Expand All

Suggested Remediations

Taking the following actions across 1 hosts would resolve 66% of the vulnerabilities on the network:
Action to take Vulns Hosts
Ubuntu 5.10 / 6.06 LTS / 6.10 : firefox vulnerability (USN-443-1): Update the affected packages. 65 1
Ubuntu 5.04 / 5.10 : mozilla vulnerabilities (USN-361-1): Update the affected packages. 51 1
Ubuntu 5.10 / 6.06 LTS / 6.10 : php5 regression (USN-424-2): Update the affected packages. 27 1
Ubuntu 5.04 / 5.10 / 6.06 LTS : tiff vulnerabilities (USN-330-1): Update the affected packages. 13 1
Ubuntu 5.10 / 6.06 LTS / 6.10 : gnupg vulnerability (USN-432-1): Update the affected gnupg package. 13 1
Ubuntu 5.10 / 6.06 LTS / 6.10 : freetype, libxfont, xorg, xorg-server vulnerabilities (USN-448-1): Update the affected packages. 8 1
Ubuntu 4.10 / 5.04 / 5.10 : kdegraphics, koffice, xpdf, cupsys, poppler, tetex-bin vulnerabilities (USN-270-1): Update the affected packages. 8 1
Ubuntu 5.04 / 5.10 / 6.06 LTS : openssl vulnerability (USN-353-2): Update the affected packages. 8 1
Ubuntu 5.10 : mysql-dfsg-4.1 vulnerability (USN-321-1): Update the affected packages. 7 1
Ubuntu 5.10 / 6.06 LTS / 6.10 : imagemagick vulnerabilities (USN-422-1): Update the affected packages. 6 1

Hosts Summary (Executive)

[-] Collapse All
[+] Expand All

192.168.1.28

Summary

Critical High Medium Low Info Total
12 49 29 12 26 128

Details

Severity Plugin Id Name
Critical (10.0) 20781 Ubuntu 4.10 / 5.04 / 5.10 : xpdf, poppler, cupsys, tetex-bin vulnerabilities (USN-236-1)
Critical (10.0) 21270 Ubuntu 4.10 / 5.04 / 5.10 : mozilla-firefox, firefox vulnerabilities (USN-271-1)
Critical (10.0) 21301 Ubuntu 4.10 / 5.04 / 5.10 : mozilla vulnerabilities (USN-275-1)
Critical (10.0) 27933 Ubuntu 5.04 / 5.10 / 6.06 LTS : openssl vulnerabilities (USN-353-1)
Critical (10.0) 27941 Ubuntu 5.04 / 5.10 : mozilla vulnerabilities (USN-361-1)
Critical (10.0) 27942 Ubuntu 5.04 / 5.10 / 6.06 LTS : php4, php5 vulnerabilities (USN-362-1)
Critical (10.0) 27978 Ubuntu 5.10 / 6.06 LTS / 6.10 : gnupg vulnerability (USN-393-1)
Critical (10.0) 27991 Ubuntu 5.10 / 6.06 LTS / 6.10 : xorg, xorg-server vulnerabilities (USN-403-1)
Critical (10.0) 28016 Ubuntu 5.10 / 6.06 LTS / 6.10 : php5 vulnerabilities (USN-424-1)
Critical (10.0) 28017 Ubuntu 5.10 / 6.06 LTS / 6.10 : php5 regression (USN-424-2)
Critical (10.0) 28043 Ubuntu 5.10 / 6.06 LTS / 6.10 : nas vulnerabilities (USN-446-1)
Critical (10.0) 33850 Unsupported Unix Operating System
High (9.3) 27869 Ubuntu 5.04 / 5.10 : firefox, mozilla-firefox vulnerabilities (USN-296-2)
High (9.3) 27897 Ubuntu 5.04 / 5.10 / 6.06 LTS : php4, php5 vulnerabilities (USN-320-1)
High (9.3) 27901 Ubuntu 5.04 / 5.10 : mozilla vulnerabilities (USN-323-1)
High (9.3) 27916 Ubuntu 5.04 / 5.10 / 6.06 LTS : imagemagick vulnerability (USN-337-1)
High (9.3) 27921 Ubuntu 5.04 / 5.10 / 6.06 LTS : php4, php5 vulnerabilities (USN-342-1)
High (9.3) 27935 Ubuntu 5.04 / 5.10 / 6.06 LTS : openssh vulnerabilities (USN-355-1)
High (9.3) 27969 Ubuntu 5.10 / 6.06 LTS : imagemagick vulnerability (USN-386-1)
High (9.3) 27985 Ubuntu 5.10 / 6.06 LTS : firefox vulnerabilities (USN-398-2)
High (9.3) 27986 Ubuntu 5.10 / 6.06 LTS : firefox regression (USN-398-4)
High (9.3) 27994 Ubuntu 5.10 / 6.06 LTS : openoffice.org/-amd64, openoffice.org2/-amd64 vulnerability (USN-406-1)
High (9.3) 28014 Ubuntu 5.10 / 6.06 LTS / 6.10 : imagemagick vulnerabilities (USN-422-1)
High (9.3) 28021 Ubuntu 5.10 / 6.06 LTS / 6.10 : firefox vulnerabilities (USN-428-1)
High (9.3) 28033 Ubuntu 5.10 / 6.06 LTS / 6.10 : libwpd vulnerability (USN-437-1)
High (9.3) 28035 Ubuntu 5.10 / 6.06 LTS / 6.10 : file vulnerability (USN-439-1)
High (9.3) 28041 Ubuntu 5.10 / 6.06 LTS / 6.10 : openoffice.org(2)/-amd64, ia32-libs-openoffice.org vulnerabilities (USN-444-1)
High (9.3) 28045 Ubuntu 5.10 / 6.06 LTS / 6.10 : freetype, libxfont, xorg, xorg-server vulnerabilities (USN-448-1)
High (9.0) 28046 Ubuntu 5.10 / 6.06 LTS / 6.10 : krb5 vulnerabilities (USN-449-1)
High (8.5) 28007 Ubuntu 5.10 / 6.06 LTS / 6.10 : postgresql-7.4/-8.0/-8.1 vulnerabilities (USN-417-1)
High (7.8) 27909 Ubuntu 5.04 / 5.10 / 6.06 LTS : tiff vulnerabilities (USN-330-1)
High (7.8) 27934 Ubuntu 5.04 / 5.10 / 6.06 LTS : openssl vulnerability (USN-353-2)
High (7.8) 28000 Ubuntu 5.10 / 6.06 LTS / 6.10 : libsoup vulnerability (USN-411-1)
High (7.8) 28010 Ubuntu 5.10 / 6.06 LTS / 6.10 : bind9 vulnerabilities (USN-418-1)
High (7.8) 28026 Ubuntu 5.10 / 6.06 LTS / 6.10 : gnupg vulnerability (USN-432-1)
High (7.6) 21234 Ubuntu 4.10 / 5.04 / 5.10 : kdegraphics, koffice, xpdf, cupsys, poppler, tetex-bin vulnerabilities (USN-270-1)
High (7.6) 27889 Ubuntu 5.10 : openoffice.org2-amd64, openoffice.org2 vulnerabilities (USN-313-2)
High (7.6) 27907 Ubuntu 5.04 / 5.10 / 6.06 LTS : apache2 vulnerability (USN-328-1)
High (7.6) 27946 Ubuntu 5.10 : binutils vulnerability (USN-366-1)
High (7.5) 20770 Ubuntu 4.10 / 5.04 / 5.10 : xpdf/cupsys/tetex-bin/kdegraphics/koffice vulnerabilities (USN-227-1)
High (7.5) 21058 Ubuntu 4.10 / 5.04 / 5.10 : xpdf, poppler, kdegraphics vulnerabilities (USN-249-1)
High (7.5) 21060 Ubuntu 4.10 / 5.04 / 5.10 : libtasn1-2 vulnerability (USN-251-1)
High (7.5) 21613 Ubuntu 5.04 / 5.10 : postgresql-7.4/-8.0, postgresql, psycopg, (USN-288-1)
High (7.5) 27859 Ubuntu 5.04 / 5.10 / 6.06 LTS : dovecot, exim4, postfix vulnerabilities (USN-288-3)
High (7.5) 27861 Ubuntu 5.04 / 5.10 / 6.06 LTS : tiff vulnerabilities (USN-289-1)
High (7.5) 27863 Ubuntu 5.04 / 5.10 / 6.06 LTS : freetype vulnerabilities (USN-291-1)
High (7.5) 27864 Ubuntu 5.04 / 5.10 / 6.06 LTS : binutils vulnerability (USN-292-1)
High (7.5) 27878 Ubuntu 5.10 / 6.06 LTS : mysql-dfsg-4.1, mysql-dfsg-5.0 vulnerability (USN-303-1)
High (7.5) 27902 Ubuntu 5.04 / 5.10 / 6.06 LTS : freetype vulnerability (USN-324-1)
High (7.5) 27915 Ubuntu 5.04 / 5.10 : binutils vulnerability (USN-336-1)
High (7.5) 27929 Ubuntu 5.04 / 5.10 / 6.06 LTS : gzip vulnerabilities (USN-349-1)
High (7.5) 27939 Ubuntu 5.04 / 5.10 / 6.06 LTS : python2.3, python2.4 vulnerability (USN-359-1)
High (7.5) 27943 Ubuntu 5.04 / 5.10 / 6.06 LTS : libmusicbrainz-2.0, libmusicbrainz-2.1 vulnerability (USN-363-1)
High (7.5) 27956 Ubuntu 5.10 / 6.06 LTS / 6.10 : php5 vulnerability (USN-375-1)
High (7.5) 27964 Ubuntu 5.10 / 6.06 LTS : firefox vulnerabilities (USN-381-1)
High (7.5) 27976 Ubuntu 5.10 / 6.06 LTS / 6.10 : libgsf vulnerability (USN-391-1)
High (7.5) 28011 Ubuntu 5.10 / 6.06 LTS / 6.10 : samba vulnerabilities (USN-419-1)
High (7.2) 21069 Ubuntu 5.10 : Ubuntu 5.10 installer vulnerability (USN-262-1)
High (7.2) 27883 Ubuntu 5.04 / 5.10 / 6.06 LTS : shadow vulnerability (USN-308-1)
High (7.2) 27913 Ubuntu 5.04 / 5.10 / 6.06 LTS : krb5 vulnerabilities (USN-334-1)
High 21057 Ubuntu 4.10 / 5.04 / 5.10 : unzip regression fix (USN-248-2)
Medium (6.8) 27972 Ubuntu 5.10 / 6.06 LTS / 6.10 : gnupg vulnerability (USN-389-1)
Medium (6.8) 27998 Ubuntu 5.10 / 6.06 LTS / 6.10 : kdegraphics, koffice, poppler vulnerability (USN-410-1)
Medium (6.8) 27999 Ubuntu 5.10 : tetex-bin vulnerability (USN-410-2)
Medium (6.8) 28040 Ubuntu 5.10 / 6.06 LTS / 6.10 : firefox vulnerability (USN-443-1)
Medium (6.5) 21371 Ubuntu 5.04 / 5.10 : tiff vulnerabilities (USN-277-1)
Medium (6.5) 27881 Ubuntu 5.10 : mysql-dfsg-4.1 vulnerability (USN-306-1)
Medium (5.8) 27918 Ubuntu 5.04 / 5.10 / 6.06 LTS : openssl vulnerability (USN-339-1)
Medium (5.4) 27873 Ubuntu 5.04 / 5.10 / 6.06 LTS : libgd2 vulnerability (USN-298-1)
Medium (5.1) 21065 Ubuntu 5.04 / 5.10 : tar vulnerability (USN-257-1)
Medium (5.1) 27919 Ubuntu 5.04 / 5.10 / 6.06 LTS : imagemagick vulnerabilities (USN-340-1)
Medium (5.1) 27953 Ubuntu 5.04 / 5.10 / 6.06 LTS / 6.10 : imagemagick vulnerability (USN-372-1)
Medium (5.1) 27973 Ubuntu 5.10 / 6.06 LTS / 6.10 : evince vulnerability (USN-390-1)
Medium (5.1) 27974 Ubuntu 5.10 / 6.06 LTS / 6.10 : evince vulnerability (USN-390-2)
Medium (5.0) 21151 Ubuntu 5.10 : libcairo vulnerability (USN-265-1)
Medium (5.0) 21182 Ubuntu 4.10 / 5.04 / 5.10 : gnupg vulnerability (USN-264-1)
Medium (5.0) 27879 Ubuntu 5.04 / 5.10 / 6.06 LTS : gnupg vulnerability (USN-304-1)
Medium (5.0) 27890 Ubuntu 5.04 / 5.10 / 6.06 LTS : samba vulnerability (USN-314-1)
Medium (5.0) 27911 Ubuntu 5.04 / 5.10 / 6.06 LTS : gnupg vulnerability (USN-332-1)
Medium (5.0) 27922 Ubuntu 5.04 / 5.10 / 6.06 LTS : bind9 vulnerabilities (USN-343-1)
Medium (5.0) 27928 Ubuntu 5.04 / 5.10 / 6.06 LTS : gnutls11, gnutls12 vulnerability (USN-348-1)
Medium (4.6) 20765 Ubuntu 4.10 / 5.04 / 5.10 : perl vulnerability (USN-222-2)
Medium (4.6) 20771 Ubuntu 4.10 / 5.04 / 5.10 : curl vulnerability (USN-228-1)
Medium (4.6) 20779 Ubuntu 4.10 / 5.04 / 5.10 : sudo vulnerability (USN-235-1)
Medium (4.6) 20780 Ubuntu 4.10 / 5.04 / 5.10 : sudo vulnerability (USN-235-2)
Medium (4.6) 21063 Ubuntu 4.10 / 5.04 / 5.10 : openssh vulnerability (USN-255-1)
Medium (4.6) 21071 Ubuntu 4.10 / 5.04 / 5.10 : gnupg vulnerability (USN-252-1)
Medium (4.6) 21568 Ubuntu 5.04 / 5.10 : mysql-dfsg vulnerability (USN-274-2)
Medium (4.0) 27899 Ubuntu 5.10 : mysql-dfsg-4.1 vulnerability (USN-321-1)
Medium (4.0) 27968 Ubuntu 5.10 / 6.06 LTS / 6.10 : tar vulnerability (USN-385-1)
Low (3.7) 20778 Ubuntu 4.10 / 5.04 / 5.10 : cpio vulnerability (USN-234-1)
Low (3.7) 21056 Ubuntu 4.10 / 5.04 / 5.10 : unzip vulnerability (USN-248-1)
Low (3.7) 21372 Ubuntu 5.04 / 5.10 : gdm vulnerabilitiy (USN-278-1)
Low (3.7) 27865 Ubuntu 5.10 / 6.06 LTS : gdm vulnerability (USN-293-1)
Low (3.7) 27995 Ubuntu 5.10 / 6.06 LTS / 6.10 : libgtop2 vulnerability (USN-407-1)
Low (2.6) 21291 Ubuntu 4.10 / 5.04 / 5.10 : cyrus-sasl2 vulnerability (USN-272-1)
Low (2.6) 70658 SSH Server CBC Mode Ciphers Enabled
Low (2.6) 71049 SSH Weak MAC Algorithms Enabled
Low (2.1) 21374 Ubuntu 5.04 / 5.10 : xorg vulnerability (USN-280-1)
Low (2.1) 28004 Ubuntu 5.10 / 6.06 LTS / 6.10 : gtk+2.0 vulnerability (USN-415-1)
Low (1.7) 27989 Ubuntu 5.10 / 6.06 LTS / 6.10 : dbus vulnerability (USN-401-1)
Low (1.2) 27944 Ubuntu 5.10 / 6.06 LTS : xinit vulnerability (USN-364-1)
Info 10114 ICMP Timestamp Request Remote Date Disclosure
Info 10267 SSH Server Type and Version Information
Info 10287 Traceroute Information
Info 10881 SSH Protocol Versions Supported
Info 11936 OS Identification
Info 12634 Authenticated Check: OS Name and Installed Package Enumeration
Info 14272 netstat portscanner (SSH)
Info 19506 Nessus Scan Information
Info 20094 VMware Virtual Machine Detection
Info 22869 Software Enumeration (SSH)
Info 22964 Service Detection
Info 25202 Enumerate IPv6 Interfaces via SSH
Info 25203 Enumerate IPv4 Interfaces via SSH
Info 25220 TCP/IP Timestamps Supported
Info 25221 Remote listeners enumeration (Linux / AIX)
Info 33276 Enumerate MAC Addresses via SSH
Info 35716 Ethernet Card Manufacturer Detection
Info 39520 Backported Security Patch Detection (SSH)
Info 45590 Common Platform Enumeration (CPE)
Info 54615 Device Type
Info 55472 Device Hostname
Info 56468 Time of Last System Startup
Info 58651 Netstat Active Connections
Info 64582 Netstat Connection Information
Info 66334 Patch Report
Info 70657 SSH Algorithms and Languages Supported