Vulnerability Categories
Click here to view navigation pane

Vulnerability Categories

Every vulnerability is mapped to a vulnerability category. This includes vulnerabilities, potential vulnerabilities and information gathered checks. Some vulnerability categories are platform-specific (for example Debian and SUSE) while others are more general (for example Database and Firewall). Learn moreLearn more

When vulnerability categories were first introduced in the product, most of the vulnerabilities in the KnowledgeBase were remote detections which were initially mapped to general categories like Database, Mail Services and Firewall. When authenticated scanning functionality was introduced, several platform-specific vulnerabilities were added to the KnowledgeBase and platform-specific categories were created to coincide with these new detections.

What if a vulnerability matches multiple categories?What if a vulnerability matches multiple categories?

When a vulnerability matches multiple categories, we determine which category is the best match and assign the vulnerability to that category.

See vulnerability category descriptions and examples below.

A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z
 

A

AIX

This is a platform-specific category for all vulnerabilities and informational checks that belong to Alpine Linux.

QID

Title

330001

IBM AIX NTP Multiple Vulnerabilities

330002

IBM AIX BIND Denial of Service Vulnerability

330003

IBM AIX  Sendmail  MD5 and TLS Vulnerability

330004

IBM AIX OpenSSL Multiple Vulnerabilities

330005

IBM AIX mustendd device Vulnerability

Amazon Linux

This is a platform-specific category for all vulnerabilities and informational checks that belong to Amazon Linux.

QID

Title

350001

Amazon Linux Security Advisory for java-1.6.0-openjdk: ALAS-2016-700

350002

Amazon Linux Security Advisory for ImageMagick: ALAS-2016-699

350003

Amazon Linux Security Advisory for php56,php55: ALAS-2016-698

350004

Amazon Linux Security Advisory for mercurial: ALAS-2016-697

350005

Amazon Linux Security Advisory for graphite2: ALAS-2016-696

 

B

Backdoors and trojan horses

This category consists of QIDs that detect malicious programs that appear to perform a desirable function for the user but instead facilitates unauthorized access to the user’s computer system. Usually the malicious code bypasses normal authentication, securing remote access to the target computer, obtaining sensitive information while attempting to remain undetected.

QID

Title

1000

Potential UDP Backdoor

1001

"Back Orifice" Backdoor

1002

"GirlFriend" Backdoor

1004

Potential TCP Backdoor

1005

"Deep Throat" (Version 1) Backdoor

Brute Force Attack

This category consists of QIDs that detect applications that are vulnerable to brute force attacks. Brute force attacks usually involve traversing the search space of possible keys until the correct key is found.

QID

Title

5000

FireWall-1 Login Access Enabled

5001

Discovery of Unix Account Names Vulnerability

5002

iPlanet Netscape Messaging Server POP E-mail Address Verification Vulnerability

5003

iPlanet Netscape Messaging Server IMAP E-mail Address Verification Vulnerability

5004

CommuniGate Pro E-mail Address VerificationVulnerability

5005

NetBIOS Brute Force of Accounts

 

C

CGI

This category consists of QIDs that detect vulnerabilities or gather information in CGI web applications.

QID

Title

10000

phf CGI Vulnerability

10001

campas CGI Vulnerability

10002

Finger CGI Present

10003

PHP Buffer Overflow

10004

htmlscript CGI Directory Traversal Vulnerability

CentOS

This is a platform-specific category for all vulnerabilities and informational checks that belong to CentOS.

QID

Title

256001

CentOS Security Update for java-1.7.0-openjdk (CESA-2016:0675)

256005

CentOS Security Update for nss Security Update (CESA-2016:0684)

256007

CentOS Security Update for firefox Security Update (CESA-2016:0695)

256008

CentOS Security Update for mercurial (CESA-2016:0706)

256009

CentOS Security Update for kernel Security Update (CESA-2016:0715)

Cisco

This category consists of QIDs that detect vulnerabilities or gather information in Cisco network services or devices.

QID

Title

316001

Cisco IOS Network Mobility Services Protocol Port Information Disclosure Vulnerability (cisco-sa-20160413-nms)

316003

Cisco Web Security Appliance HTTP POST Denial of Service Vulnerability (cisco-sa-20160518-wsa1)

316007

Cisco IOS IPv6 Neighbor Discovery Crafted Packet Denial of Service Vulnerability (cisco-sa-20160525-ipv6)

316010

Cisco IOS Software Link Layer Discovery Protocol Denial of Service Vulnerability (cisco-sa-20160616-ios1)

316012

Cisco Unity Connection Cross-Site Scripting Vulnerability (cisco-sa-20160412-unity)

 

D

DNS and BIND

This category consists of QIDs that detect vulnerabilities or gather information in domain name servers and their implementations like BIND.

QID

Title

15001

Named Daemon Version Number Disclosure Vulnerability

15005

ISC BIND NXT Buffer Overflow (NXT bug) Vulnerability

15006

ISC BIND Name Server Denial of Service Vulnerability

15007

ISC BIND 8.2.2 Domain Cache Denial of Service Vulnerability

15008

Multiple Vendor ISC BIND Denial of Service (zxfr bug) Vulnerability

Database

This category consists of QIDs that detect vulnerabilities or gather information in various databases.

QID

Title

19001

Microsoft SQL Weak Database Password

19002

Guessed Oracle Database Name

19003

Default Oracle Login(s) Found

19004

PostgreSQL Database Default Account Vulnerability

19005

Oracle Listener Log File Can Be Renamed Without Authentication

Debian

This is a platform-specific category for all vulnerabilities and informational checks that belong to Debian.

QID

Title

175000

Debian Security Update for Wget (DSA-1904)

175001

Debian Security Update for Samba (DSA-1908)

175002

Debian Security Update for Ipplan (DSA-1827)

175003

Debian Security Update for Linux (DSA-1872)

175004

Debian Security Update for Linux (DSA-1929)

 

E

E-Commerce

This category consists of QIDs that detect vulnerabilities or gather information in web application systems that are related to e-commerce.

QID

Title

23000

Cart32 expdate Administrative Information Disclosure Vulnerability

23001

Multiple Vendor Web Shopping Cart Hidden Form Field Vulnerability

23002

Carey Internet Services Commerce.cgi Directory Traversal Vulnerability

23003

SmartWin CyberOffice Shopping Cart 2.0 Client Information Disclosure Vulnerability

23004

Smartwin Technology CyberOffice Shopping Cart 2.0 Price Modification Vulnerability

 

F

Fedora

This is a platform-specific category for all vulnerabilities and informational checks that belong to Fedora.

QID

Title

276001

Fedora Security Update for libotr (FEDORA-2016-2982f06845)

276002

Fedora Security Update for firefox (FEDORA-2016-9e3ff0938c)

276003

Fedora Security Update for mod_auth_mellon (FEDORA-2016-5cf6959198)

276004

Fedora Security Update for proftpd (FEDORA-2016-ac3587be9a)

276005

Fedora Security Update for websvn (FEDORA-2016-657a1305aa)

File Transfer Protocol

This category consists of QIDs that detect vulnerabilities or gather information in various file transfer protocol systems.

QID

Title

27000

Accessible Anonymous FTP Server

27001

Anonymous Access to FTP with a Blank Password Allowed

27002

Writeable Root Directory on FTP Server

27003

STAT FTP Command Information Disclosure Vulnerability

27005

World Readable and Writeable Directory on Anonymous FTP

Finger

This category consists of QIDs that detect vulnerabilities or gather information in implementations of RFC1196 that provide an interface to the 'finger' program at most network sites.

QID

Title

31000

Finger 0@" Information about Logged Users Disclosure Vulnerability

31001

"Finger .@" Information about Logged Users Disclosure Vulnerability

31002

Finger Daemon Accepts Forwarding of Requests

31003

Finger Service Discloses Logged Users

31004

FreeBSD fingerd File Disclosure Vulnerability

31005

Cfinger 1.2.2 and 1.3.2 User Listing

Firewall

This category consists of QIDs that detect vulnerabilities or gather information in various firewall products.

QID

Title

34000

TCP Source Port Pass Firewall

34001

Novell BorderManager Denial of Service Vulnerability

34002

FireWall-1 Administration Ports

34003

Check Point FireWall-1 Name Disclosure

34004

FireWall-1 Client Authentication Enabled

Forensics

This category consists of QIDs that detect vulnerabilities or gather information that could be useful in computer forensics.

QID

Title

125000

Kernel Routing Tables Information

125001

RPC Portmapper Information

125002

Network Filesystem (NFS) Exports Information

125003

Network Information Service (NIS) Information

125004

Host File Information

 

G

General remote services

This category consists of QIDs that detect vulnerabilities or gather information in services or daemons.

QID

Title

38000

"Systat" Service Open

38001

"Netstat" Service Open

38002

UDP Test-Services

38003

TCP Test-Services

38004

WircSrv MOTD Read Vulnerability

38005

GAMSoft Telsrv DoS Vulnerability

 

H

Hardware

This category consists of QIDs that detect vulnerabilities or gather information in hardware related protocols or hardware appliances.

QID

Title

43000

RIP Protocol Address Disclosure Vulnerability

43001

Cisco Catalyst 3500 XL Remote Arbitrary Command Execution Vulnerability

43002

Nortel Contivity Denial of Service and File Viewing Vulnerabilities

43003

Cisco IOS HTTP %% Vulnerability

43004

Cisco Router Online Help Vulnerability

43005

Cisco IOS HTTP Configuration Arbitrary Administrative Access Vulnerability

HP-UX

This is a platform-specific category for all vulnerabilities and informational checks that belong to HP-UX.

QID

Title

185001

HP-UX Running Java Remote Denial of Service Vulnerability (HPSBUX02777)

185002

HP-UX Running Apache Remote Denial of Service Vulnerability (HPSBUX02761)

185003

HP-UX CIFS Server Denial of Service Vulnerability (HPSBUX02768)

185004

HP-UX Running OpenSSL Remote Denial of Service Vulnerability (HPSBUX02782)

185005

HP-UX Apache Web Server Running PHP Denial of Service Vulenrability (HPSBUX02791)

 

I

Information gathering

This category consists of vulnerabilities that detect informational types of data. Please note that not all informational checks fall into this category.

QID

Title

45002

Global User List

45003

Remote User List Disclosure Using NetBIOS

45004

Target Network Information

45005

Internet Service Provider

Internet Explorer

This category consists of QIDs that detect vulnerabilities or gather information about Microsoft Internet Explorer.

QID

Title

100000

Microsoft Internet Explorer Multiple Object Type Vulnerabilities (MS03-040)

100001

Microsoft Internet Explorer Multiple Vulnerabilities (MS03-032)

100002

Microsoft Internet Explorer Multiple Vulnerabilities (MS03-020)

100003

Microsoft Internet Explorer Cumulative Security Update Not Installed (MS03-048)

100004

Microsoft Internet Explorer Cumulative Security Update Not Installed (MS04-004)

 

L

Local

This category consists of QIDs that detect vulnerabilities or gather information about vulnerabilities that can be exploited after getting local access to a box or vulnerabilities that need authenticated credentials to be detected.

QID

Title

115000

Red Hat tcpdump Malformed NFS Packet Buffer Overflow Vulnerability

115001

Red Hat Gaim Jabber Plug-In Buffer Overflow Vulnerability

115002

Red Hat Ghostscript PostScript File Arbitrary Command Execution Vulnerability

115003

Red Hat XChat DNS Command Character Stripping EXECL Vulnerability

115004

Red Hat GNU Mailman Pipermail Index Summary HTML Injection Vulnerability

 

M

Mail services

This category consists of QIDs that detect vulnerabilities or gather information about mail services.

QID

Title

50000

POP3 Banner

50001

Qualcomm Qpopper POP3 Mail Service Buffer Overflow Vulnerability

50002

Berolist Mailing List Manager Vulnerability

50004

Avirt Rover POP Server Buffer Overflow Vulnerability

50005

True North Software Internet Anywhere POP Server Buffer Overflow Vulnerability

 

N

News Server

This category consists of QIDs that detect vulnerabilities or gather information about news services.

QID

Title

54000

InterNetNews Daemon (INND) News Server Buffer Overflow Vulnerability

54001

InterNetNews Daemon (INND) 2.X News Server Buffer Overflow Vulnerability

54002

Multiple Vendor INN Remote Vulnerability

54003

ISC INN News Server Buffer Overflow Vulnerability

54004

Atrium Software Cassandra NNTP Server 1.10 Buffer Overflow Vulnerability

NFS

This category consists of QIDs that detect vulnerabilities or gather information about Network File System (NFS) services.

QID

Title

58002

Sun Solaris NFS netgroups Security Bypass Vulnerability (1000992.1)

66039

Linux Kernel NFSd Denial of Service Vulnerability

66045

"nlockmgr" Allows Proxying of NFS Requests

O

OEL

This is a platform-specific category for all vulnerabilities and informational checks that belong to Oracle Enterprise Linux (OEL).

QID

Title

155001

Oracle Enterprise Linux firefox Security Update (ELSA-2009-0256)

155002

Oracle Enterprise Linux seamonkey Security Update (ELSA-2009-0257)

155003

Oracle Enterprise Linux sudo Security Update (ELSA-2009-0267)

155004

Oracle Enterprise Linux gstreamer-plugins-good Security Update (ELSA-2009-0271)

155005

Oracle Enterprise Linux gstreamer-plugins Security Update (ELSA-2009-0270)

Office Application

This category consists of QIDs that detect vulnerabilities or gather information about various Office applications.

QID

Title

110000

Malformed Word Document Could Enable Macro to Run Automatically  (MS01-034)

110001

Microsoft Outlook Update 300550 is Missing

110002

Microsoft Outlook Update 300551 is Missing

110003

Microsoft Excel and PowerPoint Malformed Document Can Bypass Macro Security (MS01-050)

110004

Microsoft Office XP SP1 Not Installed

Oracle VM Server

This category consists of QIDs that detect vulnerabilities or gather information in Oracle VM servers.

QID

Title

39000

Oracle VM Server for x86 Security Update for sudo (OVMSA-2017-0114)

390002

Oracle VM Server for x86 Security Update for Unbreakable Enterprise kernel (OVMSA-2017-0119)

390003

Oracle VM Server for x86 Security Update for Unbreakable Enterprise kernel (OVMSA-2017-0121)

390004

Oracle VM Server for x86 Security Update for bind (OVMSA-2017-0122)

390005

Oracle VM Server for x86 Security Update for Unbreakable Enterprise kernel (OVMSA-2017-0127)

OVAL

This category consists of user-created OVAL vulnerabilities. See Configure an OVAL Vulnerability.

 

P

Proxy

This category consists of QIDs that detect vulnerabilities or gather information in proxy servers. Typically a proxy server acts as an intermediary for requests from clients seeking resources from other servers.

QID

Title

62000

Wingate Bounce Misconfiguration

62001

Socks Server

62002

Unauthenticated/Open Web Proxy Detected

62003

HTTP Proxy Supports non-HTTP Protocols

62004

Proxy Allows Directory Traversal Vulnerability

62005

TinyProxy buffer overflow vulnerability

 

R

RedHat

This is a platform-specific category for all vulnerabilities and informational checks that belong to Red Hat Linux.

QID

Title

236001

Red Hat Update for java-1.8.0-ibm (RHSA-2016:1039)

236002

Red Hat Update for qemu-kvm (RHSA-2016:0997)

236003

Red Hat Update for openssh (RHSA-2016:0741)

236004

Red Hat Update for file (RHSA-2016:0760)

236005

Red Hat Update for icedtea-web (RHSA-2016:0778)

RPC

This category consists of QIDs that detect vulnerabilities or gather information about remote procedure call related applications.

QID

Title

66001

mountd NFS Service Buffer Overflow Vulnerability

66002

NFS Exported Filesystems List Vulnerability

66003

NFS Exported Directories Mountable by Unauthorized Users

66004

ToolTalk Buffer Overflow Vulnerability

 

S

Security Policy

This category consists of QIDs that detect vulnerabilities or gather information about security policies. These are generally informational types of checks that detect the presence of anti-virus or various other settings that could be pushed with a windows group policy.

QID

Title

105000

Sophos Antivirus Scanner Detected

105001

McAfee Antivirus Scanner Detected

105002

Kaspersky Antivirus Detected

105003

Symantec Norton Antivirus Corporate Edition Detected

105004

Trend Micro Antivirus Detected

SMB / NETBIOS

This category consists of QIDs that detect vulnerabilities or gather information about server message block or the netbios protocol.

QID

Title

70000

NetBIOS Name Accessible

70001

NetBIOS Shared Folder List Available

70002

NetBIOS Access to Shared Folders

70003

Null Session/Password NetBIOS Access

70004

NetBIOS Bindings Information

SNMP

This category consists of QIDs that detect vulnerabilities or gather information about SNMP-based applications.

QID

Title

78000

General information about this host

78001

Interface list

78002

IP addresses

78003

Routing table

78004

ARP table

Solaris

This is a platform-specific category for all vulnerabilities and informational checks that belong to Solaris.

QID

Title

296001

Solaris 11.3 Support Repository Update (SRU) 8.7.0 Missing

296002

Solaris 11.3 Support Repository Update (SRU) 9.4.0 Missing

296004

Oracle Solaris 10 Critical Patch Update Multiple Vulnerabilities (CPUJUL2016)

296010

Oracle Solaris 10 Critical Patch Update Multiple Vulnerabilities (CPUAPR2017)  Shadow Brokers (EXTREMEPARR)

296017

Solaris 10 Libpng Denial of Service Vulnerability

SUSE

This is a platform-specific category for all vulnerabilities and informational checks that belong to SUSE Linux.

QID

Title

165000

SUSE Security Update for acroread (SUSE-SA:2007:011)

165001

SUSE Security Update for Sun Java 5 and 6 (SUSE-SA:2009:016)

165002

SUSE Security Update for krb5 (SUSE-SA:2009:019)

165003

SUSE Security Update for Mozilla Firefox (SUSE-SA:2009:023)

165005

SUSE Security Update for Mozilla Firefox (SUSE-SA:2009:012)

 

T

TCP/IP

This category consists of QIDs that detect vulnerabilities or gather information about protocols that fall under the generic TCP/IP protocol suite.

QID

Title

82001

ICMP Mask Reply

82002

Host Responds to One ICMP Request Multiple Times (Smurf Variant)

82003

ICMP Timestamp Request

82004

Open UDP Services List

82005

Predictable TCP Initial Sequence Numbers Vulnerability

 

U

Ubuntu

This is a platform-specific category for all vulnerabilities and informational checks that belong to Ubuntu Linux.

QID

Title

195002

Ubuntu Security Notification for Apache2 Vulnerabilities (USN-860-1)

195003

Ubuntu Security Notification for Libvorbis Vulnerabilities (USN-861-1)

195004

Ubuntu Security Notification for PHP5 Vulnerabilities (USN-862-1)

195005

Ubuntu Security Notification for Qemu-kvm Vulnerability (USN-863-1)

 

V

VMware

This category consists of QIDs that detect vulnerabilities or gather information in VMware application.

QID

Title

216001

VMware ESXi 6.0 Patch ESXi-6.0.0-update01: Complete Update 1 Missing (KB2124715)

216002

VMWare ESXi 5.0.0 Update 1 Missing (KB2010823)

216003

VMWare ESXi 5.0.0 Patch Release ESXi500-201112001 Missing (KB2007680)

216004

VMWare ESXi 4.1.0 Patch Release ESXi410-201201001 Missing (KB2009137)

216005

VMWare ESXi 4.0.0 Patch Release ESXi400-201203001 Missing (KB2011768)

 

W

Web Application

This category consists of QIDs that detect vulnerabilities or gather information about web applications.

QID

Title

150000

Persistent Cross-Site Scripting (XSS) Vulnerabilities

150001

Reflected Cross-Site Scripting (XSS) Vulnerabilities

150002

Persistent Cross-Site Scripting (XSS) in HTTP Header

150003

SQL Injection

150004

Path-Based Vulnerability

Web Application Firewall

This category consists of QIDs that detect vulnerabilities or gather information about Web Application Firewall applications.

QID

Title

226001

Disallowed HTTP Method via Configuration

226002

WAF Access Control List

226003

LDAP Injection

226004

TRACE/TRACK HTTP Method

226005

Invalid HTTP Header

Web server

This category consists of QIDs that detect vulnerabilities or gather information about web servers.

QID

Title

86000

Web Server Version

86001

SSL Web Server Version

86002

SSL Certificate - Information

86003

Microsoft IIS 4.0 Filter Extensions Buffer Overflow Vulnerability (MS99-019)

86004

Enterprise Server "PageServices" File Disclosure Vulnerability

Windows

This category consists of QIDs that detect vulnerabilities or gather information about Microsoft Windows.

QID

Title

90000

Microsoft Media Server Denial of Service Vulnerability

90001

Microsoft NetMeeting Remote Desktop Sharing DoS Vulnerability (MS00-077)

90002

Microsoft Windows Media Unicast Services DoS Vulnerability (MS00-064)

90003

Microsoft Windows Media Services Severed Connection DoS Vulnerability (MS00-097)

90005

Disabled Windows File Protection

 

X

X-Window

This category consists of QIDs that detect vulnerabilities or gather information about x-windows systems.

QID

Title

95000

Accessible X-Window Server

95001

X-Window Sniffing

95002

X Windows Font Server Denial of Service Vulnerability

95003

X11 Banner

95004

Sun Solaris fs.auto Remote Buffer Overrun Vulnerability