NSS Result Hole List v15-01-00 by Narrow (nss@privacyx.com)
===========================================================
IF YOU HAVE SOMETHING TO ADD, PLEASE CONTACT ME!

Legend:
~~~~~~~
0 - Unknow
1 - Remote access to Unix remote server
2 - Remote access to Windows remote server
3 - Allows an attacker to view files on remote server
4 - Allows an attacker to view/browse files on remote server
5 - Allows an attacker to execute commands on remote server
6 - Denial of Service (DoS) attack possible
7 - Local root access to Unix server
8 - Other

Start:
~~~~~~

+---------------------------------------+--------+
| Server Name				| Status |
+---------------------------------------+--------+
|		FTP			|	 |
|		~~~			|	 |
| wu-2.6.0(1)				| 0	 |
| wu-2.5.0(1)				| 1	 |
| wu-2.4.2VR17				| 1	 |
| wu-2.4(1)				| 4	 |
| wu-1.2(1)				| 0	 |
| wu-2.4.2-academ[BETA12-18]		| 1	 |
| proftpd1.2.0pre1-4			| 1	 |
| Serv-U 2.3, 2.2, 2.0c, 2.5		| 6,2	 |
| NcFTP 2.4.2				| 5	 |
| War 1.65, 1.70			| 6,2	 |
| ExpressFS 2.0-9			| 6,2	 |
| WFTPD 2.34-40				| 6,2	 |
| Tiny FTPD 0.51			| 6,2	 |
| BisonWare FTP Server 3.5		| 6,2	 |
| NextFTP v1.82				| 0	 |
| Broker FTP Server 3.0			| 6	 |
| PFTPD 0.26				| 6	 |
| VFTPD v1.23				| 0	 |
| G6 FTP Server 2.0			| 6,2	 |
+---------------------------------------+--------+
|		HTTPD			|	 |
|		~~~~~			|	 |
| NCSA 1.3, 1.4.x, 1.5.x		| 6,1	 |
| DwHttpd 3.1a4				| 0	 |
| EWS 1.1				| 0	 |
| Microsoft-IIS 1-4.0			| 6,2,3	 |
| VqServer				| 0	 |
| Alibaba 2-3.0				| 6,2	 |
| TeamTrack 3.00			| 1	 |
| JWeb 1.0-5				| 6,2	 |
| Falcon Web Server 1.0.0.1006		| 0	 |
| Url Live! 1.0				| 0	 |
| THTTPD 2.04				| 0	 |
| EServ 2.50				| 0	 |
| Lotus Domino				| 8	 |
| Sambar 4.2.1				| 6	 |
| ZBServer 1.5				| 6,2	 |
| Savant Web Server 2.0			| 0	 |
| CamShot WebCam 2.5			| 6	 |
| Netscape FastTrack 2.01a		| 1	 |
| Apache 0.8.x				| 8	 |
| Apache 1.0.x
				| 8	 |
+---------------------------------------+--------+
|		IMAPD 			|	 |
|		~~~~~			|	 |
| *ALL*					| 1	 |
+---------------------------------------+--------+
|		RPC			|	 |
|		~~~			|	 |
| amd					| 1	 |
| mountd				| 1	 |
| cmsd					| 1	 |
| status				| 1	 |
| nfsd					| 1	 |
| nisd					| 1	 |
| statd					| 1	 |
| yppasswd				| 0	 |
| ypsnarf				| 0	 |
| sadmins				| 1	 |
| pcnfsd				| 1	 |
| nlockmgr				| 1	 |
| ttdbserver				| 1	 |
| rstatd				| 1	 |
| autofsd				| 1	 |
+---------------------------------------+--------+
|		TROJAN			|	 |
|		~~~~~~			|	 |
| Sub-7 v2.0: 1243			| 2	 |
| Sub-7 v2.1: 27374			| 2	 |
| NetBus: 12345				| 2	 |
| GirlFriend: 21554			| 2	 |
| EvilFTP: 23456			| 2	 |
| GateCrasher: 6969			| 2	 |
| phAse Zero: 555			| 2	 |
+---------------------------------------+--------+
|		ROOTSHELL		|	 |
|		~~~~~~~~~		|	 |
| Root Shell: *ALL*			| 1	 |
+---------------------------------------+--------+
|		FINGER			|	 |
|		~~~~~~			|	 |
| Finger				| 5,6,7	 |
+---------------------------------------+--------+
|		POP3			|	 |
|		~~~~			|	 |
| QPOP *ALL*				| 1	 |
| ScoPOP 2.1.4-R3, 5.0.0		| 1	 |
| FuseMail 2.7				| 2	 |
| IMail 5.07				| 6,2	 |
| UCB Pop Server 1.831beta		| 1	 |
| Rover POP3 Server 1.1			| 6,2	 |
| XtraMail POP3 Server v1.11		| 6,2	 |
+---------------------------------------+--------+
|		MAIL			|	 |
|		~~~~			|	 |
| MS Exchange 5.0			| 6,2	 |
| SLMail v2.6, v3.1, v3.2		| 6,2	 |
| Sendmail 4.1, 5.5, 5.6x		| 1	 |
| Sendmail 8.0.x			| 7	 |
| Sendmail 8.65				| 6,1,7	 |
| Sendmail 8.7-9.x			| 6,7,1	 |
| *ALL OTHER*				| 6,2	 |
+---------------------------------------+--------+
|		NAMED			|	 |
|		~~~~~			|	 |
| Bind-4.9.x				| 6,1	 |
| Bind-8.(0-2).(0-2)			| 6,1	 |
+---------------------------------------+--------+
|		LINUXCONF		|	 |
|		~~~~~~~~~		|	 |
| Unknow				| 1,0	 |
+---------------------------------------+--------+
|		SSHD			|	 |
|		~~~~			|	 |
| x-1.2.27-x				| 6,1	 |
+---------------------------------------+--------+
|		CGI			|	 |
|		~~~			|	 |
| faxsurvey				| 5	 |
| wrap					| 4	 |
| webdist				| 5	 |
| handler				| 5	 |
| pfdispaly				| 5	 |
| view-source				| 3	 |
| php.cgi				| 3	 |
| aglimpse				| 5	 |
| webgais				| 5	 |
| campas				| 5	 |
| www-sql				| 8	 |
| info2www				| 5	 |
| man.sh				| 5	 |
| convert.bas				| 3	 |
| whois_raw.cgi				| 5	 |
| nph-test-cgi				| 4	 |
| wguest.exe				| 3	 |
| rguest.exe				| 3	 |
| dbmlparser.exe			| 5	 |
| queryhit.htm				| 8	 |
| showcode.asp				| 3	 |
| perl.exe				| 5	 |
| htmlscript				| 3	 |
| carbo.dll				| 0	 |
| textcounter.pl			| 8	 |
| displayopenedfile			| 3	 |
| codebrws(2)				| 3	 |
| catalog_type(2)			| 5	 |
| w3-msql				| 8	 |
| service.pwd				| 8	 |
| users.pwd				| 8	 |
| authors.pwd				| 8	 |
| administrators.pwd			| 8	 |
| sendmail.cfm				| 5	 |
| exprcalc.cfm				| 8	 |
| showfile.asp				| 3	 |
| openfile.cfm				| 3	 |
| ws_ftp.ini				| 8	 |
| args.cmd				| 0	 |
| win-c-sample.exe			| 6,5	 |
| passwd.txt				| 8	 |
| uploader.exe				| 8	 |
| FrontPage ".."			| 4	 |
| rwwwshell.pl				| 8	 |
| unlg1.1				| 8	 |
| .html					| 4	 |
| add_ftp.cgi				| 0	 |
| ism.dll				| 8	 |
| ..\../				| 4	 |
| websendmail				| 5	 |
| AT-admin.cgi & AT-generate.cgi	| 5	 |
| jj					| 5	 |
| finger				| 5,8	 |
| bnbform.cgi				| 5	 |
| survey.cgi				| 5	 |
| AnyForm2				| 5	 |
| classifieds.cgi			| 5	 |
| CGImail.exe				| 8	 |
| search97.vts				| 3	 |
| fpexplorer.exe			| 4	 |
| site.csc				| 0	 |
| formmail.pl				| 8,5	 |
| w3-sql				| 8	 |
| Zeus Search				| 1,3	 |
| input.bat, input2.bat			| 5	 |
| test.bat, envout.bat, tst.bat		| 5	 |
| msadcs.dll, newdsn.exe		| 8	 |
| get32.exe				| 5	 |
| alibaba.pl				| 5	 |
| /publisher				| 8	 |
| .htaccess, .htpasswd			| 8	 |
| Cgitest.exe				| 8	 |
| GWWEB.EXE				| 6,8	 |
| webwho.pl				| 5	 |
| webbbs.exe				| 3	 |
| query?mss				| 3	 |
| search.cgi				| 4	 |
| plusmail				| 1	 |
| imagemap.exe				| 5,2	 |
| excite				| 5	 |
+---------------------------------------+--------+
