Table of Contents
Advertisement
Description of Check Information (Assessment Policy)
Introduction
Check group
definitions
IBM Proventia Network Enterprise Scanner User Guide, Version 1.3
The checks that Enterprise Scanner uses appear in the Checks tab of the Assessment
policy. This topic describes the information available about each check.
Table 38 describes the columns of information available about each check in the Checks
tab of the Assessment policy:
Column
Description
Authentication
The type of authentication required to run the check, if any.
Category
The check's vulnerability category.
For example, a check could be related to a back door, an email exploit, or
SNMP.
Tip: To see all the categories of checks, group the checks by category.
Check
The name of the check.
Check ID
An unsigned 64-bit integer that is the check's unique identifier in the number
system IBM ISS uses for checks.
Comment
Indicates whether the check has a configured option enabled, such as a timeout
setting.
Customized
Indicates that one or more parameters have been changed from their default
settings.
Note: This condition is set automatically when you change or reset a
parameter that you can customize.
Description
A short phrase describing the vulnerability detected by the check and the
method the check employs to detect it.
Example: "Looks at the Windows registry to determine whether an AOL Instant
Messaging Client is present on the system."
Enabled
Enables the check for the scan.
Impact
A value describing the check's impact on the target host or network. Some
possible impacts may include crashing the target host, slowing the target host,
crashing the target service, slowing the target service, slowing the network, or
none.
Note: The impact of None, indicates that the check does not create a denial-of-
service (DoS) situation on an asset.
Info
A link to the IBM ISS Web site location of up-to-date remedy information for the
assessment checks.
No target result
A value indicating what result (present, absent, or unknown) should be returned
if the check does not run due to its target type not being found on the host being
assessed.
Severity
The severity or risk level assigned to the vulnerability:
•
low
•
medium
•
high
Table 38: Check grouping definitions
Description of Check Information (Assessment Policy)
101
Advertisement
Table of Contents
