I'm running Nessus version 1.1.14 and have noticed that I don't get the same results when scanning targets on a restricted port set. Specifically I scanned a host on port 25 only and then I scanned the same host on all ports. The first scan didn't pick up any mail vulnerabilities while the second picked up 4, including mail relay a buffer overflow on port 25.
What's going on here? Is this a "feature" or bug? Thanks. --Andrew
