Scan Report Executive Summary

Transcription

1 Scan Report Executive Summary Part 1. Scan Information Scan Customer Company: Date scan was completed: WineDirect ASV Company: Comodo CA Limited 10/11/2018 Scan expiration date: 01/09/2019 Part 2. Summary (IP Address, domain, etc.): (IP Address, domain, etc.):.winedirect Part 3a. Vulnerabilities Noted for each ASV may choose to omit vulnerabilities that do not impact compliance from this section, however, failing vulnerabilities that have been changed to "pass" via exceptions or after remediation / rescan must always be listed Vulnerabilities Noted per Web Server Directory Enumeration 80 / tcp Web Server Directory Enumeration 443 / tcp Web Application Cookies Not Marked Secure 80 / tcp Web Application Cookies Not Marked Secure 443 / tcp HyperText Transfer Protocol (HTTP) Information 443 / tcp HyperText Transfer Protocol (HTTP) Information 80 / tcp Common Platform Enumeration (CPE) 0 / tcp / SSL Perfect Forward Secrecy Cipher Suites Supported 443 / tcp SSL Certificate Information 443 / tcp Service Detection 443 / tcp Service Detection 443 / tcp Service Detection 80 / tcp HTTP Methods Allowed (per directory) 80 / tcp

2 Vulnerabilities Noted per HTTP Methods Allowed (per directory) 443 / tcp / Apache HTTP Server Version 443 / tcp Apache HTTP Server Version 80 / tcp SSL Root Certification Authority Certificate Information 443 / tcp SSL Cipher Suites Supported 443 / tcp SSL Cipher Block Chaining Cipher Suites Supported 443 / tcp SSL / TLS Versions Supported 443 / tcp Device Type 0 / tcp / OS Identification 0 / tcp / Nessus SYN scanner 443 / tcp Nessus SYN scanner 80 / tcp Web Application Cookies Are Expired 80 / tcp Web Application Cookies Are Expired 443 / tcp / HTTP Server Type and Version 80 / tcp HTTP Server Type and Version 443 / tcp TCP/IP Timestamps Supported 0 / tcp / HSTS Missing From HTTPS Server 443 / tcp Web Server robots.txt Information Disclosure 80 / tcp Web Server robots.txt Information Disclosure 443 / tcp Consolidated Solution/Correction Plan for above IP address: If possible, ensure all communication occurs over an encrypted channel and add the 'secure' attribute to all session cookies or any cookies containing sensitive data. Ensure that use of this root Certification Authority certificate complies with your organization's acceptable use and security policies. Protect your target with an IP filter.

3 Consolidated Solution/Correction Plan for above IP address: If needed, set an expiration date in the future so the cookie will persist or remove the Expires cookie attribute altogether to convert the cookie to a session cookie. Configure the remote web server to use HSTS. Review the contents of the site's robots.txt file, use Robots META tags instead of entries in the robots.txt file, and/or adjust the web server's access controls to limit access to sensitive material. Vulnerabilities Noted per.winedirect CGI Generic Path Traversal (write test) 443 / tcp / Medium 6.4 The vulnerability is not present after inspection and testing.winedirect Web Application Cookies Not Marked Secure 80 / tcp.winedirect Web Application Cookies Not Marked Secure 443 / tcp.winedirect Device Type 0 / tcp /.winedirect HyperText Transfer Protocol (HTTP) Information 443 / tcp.winedirect HyperText Transfer Protocol (HTTP) Information 80 / tcp.winedirect SSL / TLS Versions Supported 443 / tcp.winedirect SSL Root Certification Authority Certificate Information 443 / tcp.winedirect SSL Cipher Suites Supported 443 / tcp.winedirect HSTS Missing From HTTPS Server 443 / tcp.winedirect Web Server robots.txt Information Disclosure 443 / tcp.winedirect TLS NPN Supported Protocol Enumeration 443 / tcp.winedirect Web Application Cookies Not Marked HttpOnly 80 / tcp.winedirect Web Application Cookies Not Marked HttpOnly 443 / tcp.winedirect.winedirect HTTP X-Content-Security-Policy Response Header Usage 443 / tcp HyperText Transfer Protocol (HTTP) Redirect Information 80 / tcp

4 Vulnerabilities Noted per.winedirect SSL Cipher Block Chaining Cipher Suites Supported 443 / tcp.winedirect Web Application Sitemap 443 / tcp.winedirect TLS ALPN Supported Protocol Enumeration 443 / tcp.winedirect Service Detection 443 / tcp.winedirect Service Detection 443 / tcp.winedirect Service Detection 80 / tcp.winedirect OS Identification 0 / tcp /.winedirect HTTP Methods Allowed (per directory) 443 / tcp /.winedirect HTTP Methods Allowed (per directory) 80 / tcp.winedirect Nessus SYN scanner 443 / tcp.winedirect Nessus SYN scanner 80 / tcp.winedirect HTTP Server Type and Version 80 / tcp.winedirect HTTP Server Type and Version 443 / tcp.winedirect Web Server Harvested Addresses 443 / tcp /.winedirect Web Server No 404 Error Code Check 80 / tcp.winedirect TCP/IP Timestamps Supported 0 / tcp /.winedirect SSL Perfect Forward Secrecy Cipher Suites Supported 443 / tcp.winedirect CGI Generic Tests Load Estimation (all tests) 443 / tcp.winedirect SSL Certificate Information 443 / tcp.winedirect Web Server Directory Enumeration 443 / tcp.winedirect CGI Generic Injectable Parameter 443 / tcp.winedirect JQuery Detection 443 / tcp

5 Vulnerabilities Noted per.winedirect nginx HTTP Server Detection 443 / tcp.winedirect nginx HTTP Server Detection 80 / tcp.winedirect HTTP X-Frame-Options Response Header Usage 443 / tcp.winedirect Common Platform Enumeration (CPE) 0 / tcp / Consolidated Solution/Correction Plan for above IP address: Restrict access to the vulnerable application. Contact the vendor for a patch or upgrade. If possible, ensure all communication occurs over an encrypted channel and add the 'secure' attribute to all session cookies or any cookies containing sensitive data. Ensure that use of this root Certification Authority certificate complies with your organization's acceptable use and security policies. Configure the remote web server to use HSTS. Review the contents of the site's robots.txt file, use Robots META tags instead of entries in the robots.txt file, and/or adjust the web server's access controls to limit access to sensitive material. If possible, add the 'HttpOnly' attribute to all session cookies and any cookies containing sensitive data. Set a non-permissive Content-Security-Policy frame-ancestors header for all requested resources. Analyze the redirect(s) to verify that this is valid operation for your web server and/or application. Protect your target with an IP filter. Set a properly configured X-Frame-Options header for all requested resources. Part 3b. Special Notes by Special Note Item Noted Scan customer`s description of action taken and declaration that software is either implemented securely or removed

6 Special Note Item Noted Scan customer`s description of action taken and declaration that software is either implemented securely or removed.winedirect.c As you were Load Balancing om unable to validate that the configuration of the environment behind your load balancers is synchronized, it is your responsibility to ensure that the environment is scanned as part of the internal vulnerability scans required by the PCI DSS Part 3c. Special notes -- Full Text Note Part 4a. Scope Submitted by Scan Customer for Discovery IP Addresses/ranges/subnets, domains, URLs, etc. DOMAIN:.winedirect DOMAIN: Part 4b. Scan Customer Designated In-Scope s (Scanned) IP Addresses/ranges/subnets, domains, URLs, etc..winedirect Part 4c. Scan Customer Designated Out-of-Scope s (Not Scanned) Requires description for each IP Address/range/subnet, domain, URL :no connectivity to CDE :no connectivity to CDE :no connectivity to CDE :no connectivity to CDE ec us-west-2pute.amazonaws:no connectivity to CDE

7 ec us-west-2pute.amazonaws:no connectivity to CDE ec us-west-2pute.amazonaws:no connectivity to CDE ec us-west-2pute.amazonaws:no connectivity to CDE evineage.vin65:no connectivity to CDE reports.vin65:no connectivity to CDE siteadmin2.k1technology:no connectivity to CDE winedirect.vin65:no connectivity to CDE.duckhorn:no connectivity to CDE.foleyfoodandwinesociety:no connectivity to CDE.twistedoak:no connectivity to CDE.vin65:no connectivity to CDE