Detections
Analytics

Netscape / iPlanet .perf Remote Information Disclosure

medium Nessus Plugin ID 11220

Synopsis

The remote web server is affected by an information disclosure vulnerability.

Description

Requesting the URI /.perf gives information about the currently running Netscape/iPlanet web server.

Solution

If you don't use this feature, server monitoring should be disabled in the magnus.conf file or web server admin.

See Also

http://www.nessus.org/u?bedb7504

Plugin Details

Severity: Medium

ID: 11220

File Name: iplanet_perf.nasl

Version: 1.14

Type: remote

Family: Web Servers

Published: 2/6/2003

Updated: 6/12/2020

Supported Sensors: Nessus

Risk Information

CVSS v2

Risk Factor: Medium

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Vulnerability Information

Required KB Items: www/netscape-fasttrack, www/iplanet, www/netscape-commerce