Executive Summary

Scan Name:	WebScantest
Date:	12/13/2011 4:15:27 PM
Authenticated User:	(none)
Total Links / Attackable Links:	266 / 218
Target URL:	http://www.webscantest.com/
Reports:

Security Status - Complete

Vulnerability

Best Practice

Exposure

Vulnerability Trend

Crawl and Attack Summary:
We crawled 266 links and found 218 attack points for which we calculated 120,071 possible attacks of which 44,127 were actually performed.
There are 496 vulnerabilities detected of which 382 have been consolidated to 114 root causes, allowing us to reduce remediation labor by 77%.

More than 1% but less than 5% of the requests failed in this scan. This suggests that the scan is slightly faster than your network and/or server can handle. These errors somewhat compromise the assessment value of this scan. Try setting a lower number (i.e. 90% of the current value) of maximum concurrent requests and run the scan again. It will take slightly longer but yield better results.

Vulnerability Summary:
There are significant security concerns with this site, including High-Risk vulnerabilities and high threat Exposure. High-Risk vulnerabilities pose significant threat to web site security and can lead to the access, modification or loss of proprietary corporate information, customer information and more. Furthermore, federal legislation including Gramm-Leach-Bliley Act (GLBA), The Health Insurance Portability and Accountability Act (HIPAA) of 1996, Sarbanes-Oxley, as well as new laws in California may directly affect you. These issues create significant risk to the security of your network and should receive immediate attention.

Vulnerabilities by Risk

Vulnerabilities:
Root Causes:

496
114

Remediation Efficiency

Reduced remediation labor by 77%.

Remediation Cost Estimates For High and Medium Risk Issues

Remediator	Estimated time to fix ^*	Estimated cost ^*
Application Developer
73	62.75 – 99.25 man hours	$15,687.50 – $24,812.50
Server Administrator
1	2.25 – 3.00 man hours	$562.50 – $750.00

This estimate assumes that the source code is readily available in a
central location and the application does not have to be compiled.

Estimate Qualification*

Assessment Statistics

Module	Status	Potential	Performed	Found
Predictable Resource Location	Enabled	2,815	2,707	9
Source Code Disclosure	Enabled	14,040	13,896	0
SQL Injection	Enabled	13,980	11,375	105
Blind SQL	Enabled	18,640	4,395	91
OS Commanding	Enabled	20,970	4,830	5
Directory Indexing	Enabled	3,042	207	5
Java Grinder	Enabled	0	0	0
Reflection Analysis	Enabled	1,398	1,365	94
Cross-Site Scripting	Enabled	1,864	2,369	218
Session Strength Analysis	Enabled	7	6	2
Parameter Analysis	Enabled	27,028	922	28
Web Service (SOAP) Analysis	Enabled	0	0	0
HTTP Response Splitting	Enabled	1,398	1,365	1
Cookie Analysis	Enabled	932	805	16
Remote File Include	Enabled	1,812	1,679	0
Arbitrary File Upload	Enabled	6	6	4
Cross-Site Tracing	Enabled	3	1	1
Reverse Proxy	Enabled	3	1	0
Server Configuration	Enabled	0	1	1
Authentication Testing	Enabled	370	370	1
Active Content Analysis	Enabled	0	13	0
Frame/iFrame Content Analysis	Enabled	0	0	0
Compliance	Enabled	0	11,296	318
Web Beacon	Enabled	0	3	0
Financial Compliance	Enabled	0	24	0

Compliance Summary

Standard	Status	Issues
Best Practices	Fail	12
SOX	Fail	55
HIPAA	Pass	0
PCI	Fail	88
DISASTIG	Fail	82
GLB	Fail	6
OWASP2007	Fail	132
OWASP2010	Fail	130
FISMA	Fail	126

Vulnerabilities

This scan has only partial vulnerability checking enabled, and thus, is not a complete representation of all potential site vulnerabilities. It is recommended that full vulnerability checking be enabled when at all possible.

This site was found to have numerous vulnerabilities, including those considered to be High Risk. A High Risk vulnerability creates a strong opportunity for an attacker to compromise the site's security and gain access to, modify or delete information such as credit card information, other customer data, and other sensitive or proprietary data that is being stored. Furthermore, these systems may become a launching pad for the attacker to gain access to other systems and/or networks.

Remediation of High Risk vulnerabilities requires immediate attention in order to mitigate your security concern; other vulnerabilities should be addressed immediately afterwards, based on priority risk.

Positive Factors

The absence of backup files implies a strong deployment policy for moving web servers into production environments.

Negative Factors

	The application does not use strong validation filters on user-supplied data.
	The application does not filter unexpected characters from user-supplied data that form database queries.
	The application does not filter HTML tags with the potential for misuse.
	This site does not enforce a robust authentication policy that prevents weak or common passwords.
	The application's session management mechanism may be susceptible to prediction attacks.

Exposure

This site is architected with a high number of "Attack Points" that can be targeted by an attacker. While many of these may not create a direct vulnerability today, emerging threats focus on such site resources based on their ability to interact directly with the web server, application server or database. If such resources are necessary, it is highly recommended that a thorough code analysis be performed to ensure "Best Practices" are employed to reduce possible exploitation by emerging attacks. Ongoing analysis, assessment and monitoring of such resources are critical to mitigate any emerging threats to these Exposure concerns.

Positive Factors

	The application consists of a single web server platform.
	The application does not return raw HTTP error codes.

Negative Factors

	The application sends session tokens/cookies over HTTP (plaintext) instead of HTTPS (encrypted).
	This application uses many unique URL parameters, which increases the need for strong input validation filters.
	The application passes data to external web sites (external to the scanned domain).