| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| The rexd service is running, which uses weak authentication that can allow an attacker to execute commands. |
| The rwho/rwhod service is running, which exposes machine status and user information. |
| The ident/identd service is running. |
| The NT Alerter and Messenger services are running. |
| The echo service is running. |
| The discard service is running. |
| The systat service is running. |
| The daytime service is running. |
| The chargen service is running. |
| The Gopher service is running. |
| The UUCP service is running. |
| The netstat service is running, which provides sensitive information to remote attackers. |
| The rsh/rlogin service is running. |
| A component service related to NIS+ is running. |
| The OS/2 or POSIX subsystem in NT is enabled. |
| The ugidd RPC interface, by design, allows remote attackers to enumerate valid usernames by specifying arbitrary UIDs that ugidd maps to local user and group names. |
| A system is running a version of software that was replaced with a Trojan Horse at one of its distribution points, such as (1) TCP Wrappers 7.6, (2) util-linux 2.9g, (3) wuarchive ftpd (wuftpd) 2.2 and 2.1f, (4) IRC client (ircII) ircII 2.2.9, (5) OpenSSH 3.4p1, or (6) Sendmail 8.12.6. |
| A system-critical program or library does not have the appropriate patch, hotfix, or service pack installed, or is outdated or obsolete. |
| A system-critical program, library, or file has a checksum or other integrity measurement that indicates that it has been modified. |
| An application-critical Windows NT registry key has inappropriate permissions. |