SAINT Configuration Management (saint-data)

Custom Scan Setup


Databases (0/62 checks enabled)				Enable All	Disable All
DNS (0/22 checks enabled)				Enable All	Disable All
File Transfer (0/102 checks enabled)				Enable All	Disable All
Mail (0/224 checks enabled)				Enable All	Disable All
Networking/SNMP (0/119 checks enabled)				Enable All	Disable All
Passwords (0/5 checks enabled)				Enable All	Disable All
Print Services (0/24 checks enabled)				Enable All	Disable All
RPC (0/39 checks enabled)				Enable All	Disable All
Login/Shell (0/34 checks enabled)				Enable All	Disable All
Web
	AXIS Communications Camera Control image_pan_tilt Buffer Overflow
	Web Security (0/4 checks enabled)			Enable All	Disable All
	Web clients (0/30 checks enabled)			Enable All	Disable All
	Web development application servers (0/51 checks enabled)			Enable All	Disable All
	Web modules (0/25 checks enabled)			Enable All	Disable All
	Web programs
		ASP programs (0/37 checks enabled)		Enable All	Disable All
		CGIs and web scripts
			(/WebAdmin.dll) is present
			(/cgi-dos/args.bat) is present
			(/cgi-shl/win-c-sample.exe) is present
			(/cgi-win/uploader.exe) is present
			(/ddrint/bin/ddicgi.exe) is present
			(/dsgw/bin/search) is present
			(/pbserver/pbserver.dll) is present
			(/scripts/c32web.exe/ChangeAdminPassword) is present
			(/scripts/cart32.exe/cart32clientlist) is present
			(/scripts/emurl/RECMAN.dll) is present
			(/search97cgi/vtopic) is present
			(Bonsai) is present
			(CSMailto.cgi) is present
			(CWMail.exe) is present
			(FtpSaveCSP.dll) is present
			(FtpSaveCVP.dll) is present
			(MsmSetup.exe) is present
			(bizdb1-search.cgi) is present
			(console.exe) is present
			(csChatRBox.cgi) is present
			(csGuestBook.cgi) is present
			(csLiveSupport.cgi) is present
			(csNews.cgi) is present
			(csSearch.cgi) is present
			(db2www*) is present
			(excite) is present
			(foxweb.dll) is present
			(genhtml.pl) is present
			(guestbook.cgi) is present
			(helpwin.gas.bat) is present
			(login.gas.bat) is present
			(math_sum.mscgi) is present
			(ncommerce3/ExecMacro/orderdspc.d2w/report) is present
			(openwebmail.pl) is present
			(pi) is present
			(post-query) is present
			(register.dll) is present
			(rwcgi60*) is present
			(smb2www.pl) is present
			(statsconfig.pl) is present
			(susesearch.cgi) is present
			(upload.cgi) is present
			(vacation.pl) is present
			(w3-msql/index.html) is present
			(wais.pl) is present
			(webc.cgi) is present
			(webnews.exe) is present
			(webplus*) is present
			(webshell) is present
			(websync.exe) is present
			(www-sql) is present
			(wwwwais) is present
			AWStats awstats.pl Multiple Path Disclosure
			AWStats vulnerability (PluginMode)
			AWStats web usage statistics accessible
			Apache printenv allows cross-site scripting
			Axis HTTP server command execution (virtualinput.cgi)
			CGI Gives Information about System (/lcgi/ndsobj.nlm)
			CGI Gives Information about System (dumpenv.pl)
			CGI Gives Information about System (finger)
			CGI Gives Information about System (nph-test-cgi)
			CGI Gives Information about System (test-cgi)
			CGI Gives Information about System (wrap)
			CGI Gives Information about System (wwwboard)
			Cart32 Arbitrary File Read
			Cart32 GetLatestBuilds allows cross-site scripting
			Cross-site scripting in openwebmail-main.pl
			Cross-site scripting vulnerability in * parameter to *
			Cross-site scripting vulnerability in bgplg
			Google Appliance allows cross-site scripting (ie)
			Google Appliance allows cross-site scripting (proxystylesheet)
			HTML::Merge input validation vulnerability (printsource.pl)
			IBM Net.Data db2www cross-site scripting
			Linksys network device may be vulnerable (Gozila.cgi)
			MailPost allows cross-site scripting
			Namazu allows cross-site scripting
			Netware Xsession HTTP access (/GUIMirror/Start)
			NexusWay web vulnerabilities (nslookup.cgi)
			RSA Authentication Agent allows cross-site scripting
			SQLLedger directory traversal login arbitrary code execution
			SalesLogix Web Client authentication bypass (slxweb.dll)
			Script allows cross-site scripting (merchant.mvc)
			TWiki allows command execution (Search.pm)
			Unauthorized Access via Web Server (/SWEditServlet)
			Unauthorized Access via Web Server (/WebAdmin.dll)
			Unauthorized Access via Web Server (/catinfo)
			Unauthorized Access via Web Server (/ifx/)
			Unauthorized Access via Web Server (/main.cgi)
			Unauthorized Access via Web Server (/qshop/admin/upload.htm)
			Unauthorized Access via Web Server (/resetpass/)
			Unauthorized Access via Web Server (/scripts/shopplus.cgi)
			Unauthorized Access via Web Server (/search97cgi/vtopic)
			Unauthorized Access via Web Server (/view.tmpl)
			Unauthorized Access via Web Server (/wx/s.dll)
			Unauthorized Access via Web Server (AnyForm)
			Unauthorized Access via Web Server (AnyForm2)
			Unauthorized Access via Web Server (CSNews.cgi)
			Unauthorized Access via Web Server (CommerceSQL)
			Unauthorized Access via Web Server (Encore)
			Unauthorized Access via Web Server (PGPMail.pl)
			Unauthorized Access via Web Server (SurgeLDAP)
			Unauthorized Access via Web Server (YaBB.pl)
			Unauthorized Access via Web Server (a1stats/a1disp3.cgi)
			Unauthorized Access via Web Server (aglimpse)
			Unauthorized Access via Web Server (bb-hostsvc.sh)
			Unauthorized Access via Web Server (bbs_forum.cgi)
			Unauthorized Access via Web Server (blog.cgi)
			Unauthorized Access via Web Server (boozt)
			Unauthorized Access via Web Server (cal_make.pl)
			Unauthorized Access via Web Server (calendar_admin.pl)
			Unauthorized Access via Web Server (campas)
			Unauthorized Access via Web Server (chetcpasswd.cgi)
			Unauthorized Access via Web Server (comment2.jse)
			Unauthorized Access via Web Server (count.cgi)
			Unauthorized Access via Web Server (counterfiglet)
			Unauthorized Access via Web Server (crystalimagehandler.aspx)
			Unauthorized Access via Web Server (csvform.pl)
			Unauthorized Access via Web Server (directorypro.cgi)
			Unauthorized Access via Web Server (faxsurvey)
			Unauthorized Access via Web Server (formmail)
			Unauthorized Access via Web Server (glimpse)
			Unauthorized Access via Web Server (handler)
			Unauthorized Access via Web Server (htgrep)
			Unauthorized Access via Web Server (htmlscript)
			Unauthorized Access via Web Server (htsearch)
			Unauthorized Access via Web Server (iPlanet search)
			Unauthorized Access via Web Server (ikonboard.cgi)
			Unauthorized Access via Web Server (imagemap.exe)
			Unauthorized Access via Web Server (info2www)
			Unauthorized Access via Web Server (infosrch.cgi)
			Unauthorized Access via Web Server (jj)
			Unauthorized Access via Web Server (journal.pl)
			Unauthorized Access via Web Server (logbook.pl)
			Unauthorized Access via Web Server (mail)
			Unauthorized Access via Web Server (man-cgi)
			Unauthorized Access via Web Server (mmstdod.cgi)
			Unauthorized Access via Web Server (multihtml.pl)
			Unauthorized Access via Web Server (ncbook/book.cgi)
			Unauthorized Access via Web Server (netauth.cgi)
			Unauthorized Access via Web Server (normal_html.cgi)
			Unauthorized Access via Web Server (nph-mr.cgi)
			Unauthorized Access via Web Server (nslookup.pl)
			Unauthorized Access via Web Server (openwebmail/userstat.pl)
			Unauthorized Access via Web Server (pfdispaly)
			Unauthorized Access via Web Server (phf)
			Unauthorized Access via Web Server (pollit/Poll_It_SSI_v2.0.cgi)
			Unauthorized Access via Web Server (psinclude.cgi)
			Unauthorized Access via Web Server (query)
			Unauthorized Access via Web Server (r.cgi)
			Unauthorized Access via Web Server (search.cgi)
			Unauthorized Access via Web Server (source)
			Unauthorized Access via Web Server (ssi)
			Unauthorized Access via Web Server (talkback.cgi)
			Unauthorized Access via Web Server (textcounter.pl)
			Unauthorized Access via Web Server (traceroute.pl)
			Unauthorized Access via Web Server (view-source)
			Unauthorized Access via Web Server (viewcode.jse)
			Unauthorized Access via Web Server (viewsrc.cgi)
			Unauthorized Access via Web Server (webboard/generate.cgi)
			Unauthorized Access via Web Server (webdist.cgi)
			Unauthorized Access via Web Server (webgais)
			Unauthorized Access via Web Server (webplus)
			Unauthorized Access via Web Server (websendmail)
			Unauthorized Access via Web Server (webwho.pl)
			Unauthorized Access via Web Server (whereami.cgi)
			Unauthorized Access via Web Server (whois.cgi)
			Unauthorized Access via Web Server (zml.cgi)
			Unauthorized Access via YaBB (search.pl)
			Vulnerable Bugzilla version
			WebAPP command execution (apage.cgi)
			YaBB allows cross-site scripting (usersrecentposts)
			YaBB allows cross-site scripting in shadow tags
			cPanel login page allows cross-site scripting
			cPanel scripts allow cross-site scripting
			cvstrac allows cross-site scripting
			device may allow unauthorized password change (changepw.html)
			htDig allows cross-site scripting
			multiple CGI vulnerabilities in Sambar
			multiple cross-site scripting vulnerabilities in Open Webmail
			possible backdoor password in cart32
			vulnerability in AWStats plugin hook (ShowInfoURL)
			vulnerable AWStats plug-in (rawlog)
			vulnerable AWStats script (migrate)
			vulnerable CGI:IRC version
			vulnerable SQL-Ledger version
			vulnerable Sun Secure Global Desktop version
			vulnerable TWiki version*
			vulnerable YaBB version
			vulnerable web program (ASSP)
			vulnerable web program (AWStats)
			vulnerable web program (Fujitsu ServerView)
			vulnerable web program (OutStart Participate)
			vulnerable web program (SecurityReporter file.cgi)
			vulnerable web program (TWiki rev parameter)
			vulnerable web program (WebAPP)
			vulnerable web program (adminedit.pl)
			vulnerable web program (censtore.cgi)
			vulnerable web program (codebrowserpntm.php)
			vulnerable web program (cvstrac)
			vulnerable web program (diatheke.pl)
			vulnerable web program (i-mall)
			vulnerable web program (img.pl)
			vulnerable web program (ldacgi.exe)
			vulnerable web program (man2web)
			vulnerable web program (pdesk.cgi)
			vulnerable web program (tseekdir.cgi)
			vulnerable web program (w3who.dll)
			vulnerable web program (web_store.cgi)
			vulnerable web program (weblibs.pl)
			web program information disclosure (SecureLinx)
			web program information disclosure (mailpost.exe)
			web program information disclosure (nbmember.cgi)
			web script allows mail relaying (s_form.cgi)
		Cold Fusion (0/18 checks enabled)		Enable All	Disable All
		IIS samples (0/5 checks enabled)		Enable All	Disable All
		JSP pages and servlets (0/14 checks enabled)		Enable All	Disable All
		PHP programs (0/397 checks enabled)		Enable All	Disable All
		Public data or configuration files (0/24 checks enabled)		Enable All	Disable All
		SQL injection (0/155 checks enabled)		Enable All	Disable All
		Shells (0/9 checks enabled)		Enable All	Disable All
	Web proxy servers (0/28 checks enabled)			Enable All	Disable All
	Web servers (0/115 checks enabled)			Enable All	Disable All
	Web-enabled utilities (0/80 checks enabled)			Enable All	Disable All
	content management systems (0/21 checks enabled)			Enable All	Disable All
Windows OS (0/425 checks enabled)				Enable All	Disable All
Other (0/686 checks enabled)				Enable All	Disable All


	Keyword or CVE name :

Additional TCP ports^*:
Additional UDP ports^*:
*Standard ports for selected vulnerability checks are always scanned and do not need to be entered here

Host type fingerprinting