Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.104006
Category:Nmap NSE net
Title:Nmap NSE net: http-domino-enum-passwords
Summary:Attempts to enumerate the hashed Domino Internet Passwords that are (by default) accessible by all;authenticated users. This script can also download any Domino ID Files attached to the Person;document.;;SYNTAX:;;domino-enum-passwords.idpath: the path where downloaded ID files should be saved;If not given, the script will only indicate if the ID file is donwloadable or not;;domino-enum-passwords.count: the number of internet hashes and id files to fetch.;If a negative value is given, all hashes and id files are retrieved (default: 10);;domino-enum-passwords.path: points to the path protected by authentication;;http.pipeline: If set, it represents the number of HTTP requests that'll be;pipelined (ie, sent in a single request). This can be set low to make;debugging easier, or it can be set high to test how a server reacts (its;chosen max is ignored).;;domino-enum-passwords.hostname: sets the host header in case of virtual hosting;;http-max-cache-size: The maximum memory size (in bytes) of the cache.
Description:Summary:
Attempts to enumerate the hashed Domino Internet Passwords that are (by default) accessible by all
authenticated users. This script can also download any Domino ID Files attached to the Person
document.

SYNTAX:

domino-enum-passwords.idpath: the path where downloaded ID files should be saved
If not given, the script will only indicate if the ID file is donwloadable or not

domino-enum-passwords.count: the number of internet hashes and id files to fetch.
If a negative value is given, all hashes and id files are retrieved (default: 10)

domino-enum-passwords.path: points to the path protected by authentication

http.pipeline: If set, it represents the number of HTTP requests that'll be
pipelined (ie, sent in a single request). This can be set low to make
debugging easier, or it can be set high to test how a server reacts (its
chosen max is ignored).

domino-enum-passwords.hostname: sets the host header in case of virtual hosting

http-max-cache-size: The maximum memory size (in bytes) of the cache.

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

CopyrightCopyright (C) 2011 NSE-Script: The Nmap Security Scanner; NASL-Wrapper: Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.