Repartition of the level of the security problems :

List of open ports :

• general/udp (Security notes found)
• general/tcp (Security warnings found)
• webcache (8080/tcp) (Security warnings found)
• smtp (25/tcp) (Security warnings found)
• general/icmp (Security warnings found)
• unknown (3211/tcp) (Security notes found)
• unknown (135/tcp) (Security warnings found)
• unknown (1025/tcp) (Security notes found)
• unknown (1026/tcp) (Security notes found)
• unknown (3002/tcp) (Security notes found)
• unknown (3003/tcp) (Security notes found)
• unknown (1214/tcp) (Security hole found)
• unknown (5800/tcp) (Security warnings found)
• unknown (5900/tcp) (Security warnings found)

Information found on port general/udp

For your information, here is the traceroute to xxx.xxx.xxx.xxx :
xxx.xxx.xxx.xxx
xxx.xxx.xxx.xxx
xxx.xxx.xxx.xxx
xxx.xxx.xxx.xxx
208.185.0.157
208.185.0.141
209.249.203.85
4.1.5.253
4.0.2.145
4.24.4.213
4.24.8.118
4.24.204.90
141.156.4.76
xxx.xxx.xxx.xxx
xxx.xxx.xxx.xxx

Warning found on port general/tcp

Microsoft Windows 95 and 98 clients have the ability
to bind multiple TCP/IP stacks on the same MAC address,
simply by having the protocol addded more than once
in the Network Control panel.

The remote host has several TCP/IP stacks with the
same IP binded on the same MAC adress. As a result,
it will reply several times to the same packets,
such as by sending multiple ACK to a single SYN,
creating noise on your network. If several hosts
behave the same way, then your network will be brought
down.

Solution : remove all the IP stacks except one in the remote
host
Risk factor : Medium

Warning found on port webcache (8080/tcp)

The 'snoop' tomcat's servlet is installed.
(/examples/jsp/snp/anything.snp)

This servlet gives too much information about
the remote host, such as the PATHs in use,
the host kernel version and so on...

This allows an attacker to gain more knowledge
about this host, and make more precise attacks
thanks to this.

Solution : delete this servlet

Risk factor : Low
CVE : CAN-2000-0760

Warning found on port smtp (25/tcp)

The remote SMTP server is vulnerable to a flaw in its authentication
process.

This vulnerability allows any unauthorized user to sucessfully
authenticate and use the remote SMTP server.

An attacker may use this flaw to use this SMTP server
as a spam relay.

Solution : see http://www.microsoft.com/technet/security/bulletin/MS01-037.asp
CVE : CAN-2001-0504

Information found on port smtp (25/tcp)

Remote SMTP server banner :
boofer Microsoft ESMTP MAIL Service, Version: 5.0.2195.2966 ready at Sun, 30 Dec 2001 14:41:55 -0500
214-This server supports the following commands:214 HELO EHLO STARTTLS RCPT DATA RSET MAIL QUIT HELP AUTH BDAT VRFY

Warning found on port general/icmp

The remote host answers to an ICMP timestamp
request. This allows an attacker to know the
date which is set on your machine.

This may help him to defeat all your
time based authentifications protocols.

Solution : filter out the icmp timestamp
requests (13), and the outgoing icmp
timestamp replies (14).

Risk factor : Low
CVE : CAN-1999-0524

Information found on port unknown (3211/tcp)

A DCE service is listening on 169.254.160.47:3211 :

Type: ncacn_ip_udp
UUID : 7b91f80d-ff5a-11d0-a9b2-c04fb6e60000
Annotation : Messenger Service

Information found on port unknown (3211/tcp)

A DCE service is listening on xxx.xxx.xxx.xxx:3211 :

Type: ncacn_ip_udp
UUID : 7b91f80d-ff5a-11d0-a9b2-c04fb6e60000
Annotation : Messenger Service

Warning found on port unknown (135/tcp)

DCE services running on the remote can be enumerated
by connecting on port 135 and doing the appropriate
queries.

An attacker may use this fact to gain more knowledge
about the remote host.

Solution : filter incoming traffic to this port.
Risk factor : Low

Information found on port unknown (135/tcp)

The DCE Service 'LRPC000001d4.00000001' is running on this host
Type : ncalrpc
UUID : 3088400d-86cc-d09b-11ad-16085acc8500

Information found on port unknown (135/tcp)

The DCE Service 'LRPC0000020c.00000001' is running on this host
Type : ncalrpc
UUID : 9dd7200d-3342-d0a5-11b0-0304ac32e800

Information found on port unknown (135/tcp)

The DCE Service 'LRPC00000330.00000001' is running on this host
Type : ncalrpc
UUID : f706820d-511f-e80a-3007-6d740be8cee9

Information found on port unknown (135/tcp)

The DCE Service 'LRPC00000330.00000001' is running on this host
Type : ncalrpc
UUID : 8e52b00d-a937-cfc0-1182-2daa51e40000

Information found on port unknown (135/tcp)

The DCE Service 'ntsvcs' is running on this host
Type : ncalrpc
UUID : 7b91f80d-ff5a-11d0-a9b2-c04fb6e60000
Annotation : Messenger Service

Information found on port unknown (1025/tcp)

A DCE service is listening on xxx.xxx.xxx.xxx:1025 :

Type: ncacn_ip_tcp
UUID : 9dd7200d-3342-d0a5-11b0-0304ac32e800

Information found on port unknown (1025/tcp)

A DCE service is listening on 169.254.160.47:1025 :

Type: ncacn_ip_tcp
UUID : 9dd7200d-3342-d0a5-11b0-0304ac32e800

Information found on port unknown (1026/tcp)

A DCE service is listening on xxx.xxx.xxx.xxx:1026 :

Type: ncacn_ip_tcp
UUID : f706820d-511f-e80a-3007-6d740be8cee9

Information found on port unknown (1026/tcp)

A DCE service is listening on 169.254.160.47:1026 :

Type: ncacn_ip_tcp
UUID : f706820d-511f-e80a-3007-6d740be8cee9

Information found on port unknown (1026/tcp)

A DCE service is listening on xxx.xxx.xxx.xxx:1026 :

Type: ncacn_ip_tcp
UUID : 8e52b00d-a937-cfc0-1182-2daa51e40000

Information found on port unknown (1026/tcp)

A DCE service is listening on 169.254.160.47:1026 :

Type: ncacn_ip_tcp
UUID : 8e52b00d-a937-cfc0-1182-2daa51e40000

Information found on port unknown (3002/tcp)

A DCE service is listening on xxx.xxx.xxx.xxx:3002 :

Type: ncacn_ip_tcp
UUID : ad42800d-6b82-cf03-1197-2caa68870000

Information found on port unknown (3002/tcp)

A DCE service is listening on 169.254.160.47:3002 :

Type: ncacn_ip_tcp
UUID : ad42800d-6b82-cf03-1197-2caa68870000

Information found on port unknown (3002/tcp)

A DCE service is listening on xxx.xxx.xxx.xxx:3002 :

Type: ncacn_ip_tcp
UUID : fb5d700d-a48c-cf31-11a7-d8805f48a100

Information found on port unknown (3002/tcp)

A DCE service is listening on 169.254.160.47:3002 :

Type: ncacn_ip_tcp
UUID : fb5d700d-a48c-cf31-11a7-d8805f48a100

Information found on port unknown (3002/tcp)

A DCE service is listening on xxx.xxx.xxx.xxx:3002 :

Type: ncacn_ip_tcp
UUID : a951d10d-0ebf-d32f-11bf-d1c04fa34900

Information found on port unknown (3002/tcp)

A DCE service is listening on 169.254.160.47:3002 :

Type: ncacn_ip_tcp
UUID : a951d10d-0ebf-d32f-11bf-d1c04fa34900

Information found on port unknown (3003/tcp)

A DCE service is listening on xxx.xxx.xxx.xxx:3003 :

Type: ncacn_ip_udp
UUID : a951d10d-0ebf-d32f-11bf-d1c04fa34900

Information found on port unknown (3003/tcp)

A DCE service is listening on 169.254.160.47:3003 :

Type: ncacn_ip_udp
UUID : a951d10d-0ebf-d32f-11bf-d1c04fa34900

Vulnerability found on port unknown (1214/tcp)

Remote host reported that the username used is: b0oFeR

Warning found on port unknown (5800/tcp)

The remote server is running VNC.
VNC permits a console to be displayed remotely.

Solution: Disable VNC access from the network by
using a firewall, or stop VNC service if not needed.

Risk factor : Medium

Warning found on port unknown (5900/tcp)

The remote server is running VNC.
VNC permits a console to be displayed remotely.

Solution: Disable VNC access from the network by
using a firewall, or stop VNC service if not needed.

Risk factor : Medium

Warning found on port unknown (5900/tcp)

Version of VNC Protocol is: RFB 003.003