“极光”扫描操作系统.doc

绿盟科技“极光”远程安全评估系统 评估报告 (13)1 综述 ?? ?任务名称省委办OA［13 ］(13)设备名称--任务总评该设备的风险值 581，安全等级为：非常危险关于漏洞风险程度的分类规则及主机风险分类规则，请参见《参考标准》。 2 端口漏洞列表 ?? 端口协议服务漏洞状态--OTHERUNKNOWN HYPERLINK ../../Local Settings/Temp/Rar$EX02.344/items/13.htm \l vuln_439#vuln_439允许Traceroute探测 HYPERLINK ../../Local Settings/Temp/Rar$EX02.344/items/13.htm \l vuln_567#vuln_567ICMP timestamp请求响应漏洞open80TCPwww HYPERLINK ../../Local Settings/Temp/Rar$EX02.344/items/13.htm \l vuln_541#vuln_541远端HTTP服务器类型和版本信息泄漏open135TCPmsrpc HYPERLINK ../../Local Settings/Temp/Rar$EX02.344/items/13.htm \l vuln_682#vuln_682DCE/RPC服务枚举漏洞open137UDPNetBIOS-NS HYPERLINK ../../Local Settings/Temp/Rar$EX02.344/items/13.htm \l vuln_318#vuln_318可通过NetBIOS名字服务端口远程获取系统信息 HYPERLINK ../../Local Settings/Temp/Rar$EX02.344/items/13.htm \l vuln_1420#vuln_1420服务器服务正在运行 HYPERLINK ../../Local Settings/Temp/Rar$EX02.344/items/13.htm \l vuln_1419#vuln_1419Windows Browser服务正在运行 HYPERLINK ../../Local Settings/Temp/Rar$EX02.344/items/13.htm \l vuln_1418#vuln_1418工作站服务正在运行open139TCPNetBIOS-SS HYPERLINK ../../Local Settings/Temp/Rar$EX02.344/items/13.htm \l vuln_304#vuln_304远程注册表可通过SMB会话完全访问 HYPERLINK ../../Local Settings/Temp/Rar$EX02.344/items/13.htm \l vuln_1952#vuln_1952通过SMB会话可以访问Windows系统磁盘下的任意文件 HYPERLINK ../../Local Settings/Temp/Rar$EX02.344/items/13.htm \l vuln_2899#vuln_2899检测到目标主机上管理员组帐号存在简单口令 HYPERLINK ../../Local Settings/Temp/Rar$EX02.344/items/13.htm \l vuln_1896#vuln_1896目标主机没有安装MS07-027/KB931768补丁 HYPERLINK ../../Local Settings/Temp/Rar$EX02.344/items/13.htm \l vuln_1960#vuln_1960目标主机没有安装MS07-045/KB937143补丁 HYPERLINK ../../Local Settings/Temp/Rar$EX02.344/items/13.htm \l vuln_3022#vuln_3022目标主机没有安装MS08-078/KB960714补丁 HYPERLINK ../../Local Settings/Temp/Rar$EX02.344/items/13.htm \l vuln_3192#vuln_3192Microsoft DirectShow MPEG2TuneRequest组件栈溢出漏洞(MS09-032) HYPERLINK ../../Local Settings/Temp/Rar$EX02.344/items/13.htm \l vuln_4609#vuln_46