The remote host is running a version of the Domino web server which is vulnerable to various flaws when it acts as a web client (through web retriever) or in LDAP. An attacker may use these flaws to execute arbitrary code on this host.

The remote host is running the Compaq WBEM service. This service discloses sensitive information about this host, such as the platform name and version, the installed hotfixes and the running services. 

The remote host is running Communigate Pro version 3.0 or 3.1. There is a flaw in this version which may allow an attacker to execute arbitrary code on this host.

The remote host is running version 3.0.x of the BitKeeper web server. Some versions of this service are known to allow anyone execute arbitrary commands with the privileges of the BitKeeper daemon.

The remote host is running the BadBlue web server. There is a flaw in the version used that may allow attackers to gain administrative privileges on this host without having to log in.

The remote host is running a version of PHP which is older than 4.0.4. There is a buffer overflow in the IMAP module of this version which may allow an attacker to execute arbitrary commands with the privileges of the web server if a PHP script connects to a rogue IMAP server.

ID	Name	Severity
1504	Lotus Domino < 5.0.12 / 6.0.1 Multiple Vulnerabilities	high
1503	Compaq WBEM Server Detection	medium
1502	Communigate Pro < 3.2 HTTP Configuration Port Remote Overflow	high
1501	BitKeeper 3.0.x Remote Command Execution	high
1500	BadBlue < 2.3 ISAPI Extension Administrative Actions Bypass	high
1479	PHP < 4.0.4 IMAP Module Overflow	medium

Detections

Analytics

Web Servers Family for Nessus Network Monitor

high

medium

high

high

high

medium