The RPC portmapper service is running.

The echo service is running.

The discard service is running.

The systat service is running.

The daytime service is running.

The chargen service is running.

The Gopher service is running.

The UUCP service is running.

The netstat service is running, which provides sensitive information to remote attackers.

The rsh/rlogin service is running.

A component service related to NIS+ is running.

The OS/2 or POSIX subsystem in NT is enabled.

The ugidd RPC interface, by design, allows remote attackers to enumerate valid usernames by specifying arbitrary UIDs that ugidd maps to local user and group names.

WinGate is being used.

A system is running a version of software that was replaced with a Trojan Horse at one of its distribution points, such as (1) TCP Wrappers 7.6, (2) util-linux 2.9g, (3) wuarchive ftpd (wuftpd) 2.2 and 2.1f, (4) IRC client (ircII) ircII 2.2.9, (5) OpenSSH 3.4p1, or (6) Sendmail 8.12.6.

A system-critical program or library does not have the appropriate patch, hotfix, or service pack installed, or is outdated or obsolete.

A system-critical program, library, or file has a checksum or other integrity measurement that indicates that it has been modified.

An application-critical Windows NT registry key has inappropriate permissions.

An application-critical Windows NT registry key has an inappropriate value.

Denial of service in IP protocol logger (ippl) on Red Hat and Debian Linux.