This script is Copyright (C) 2003-2011 Tenable Network Security, Inc.
The remote web server contains an application server that is prone to
an information disclosure attack.
There is a minor security problem in all releases of Zope prior to
version 2.5.1b1 - they reveal the installation path when an invalid
XML RPC request is sent.
See also :
Upgrade to Zope 2.5.1b1 / 2.6.0b1 or later.
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.3
Public Exploit Available : true
Family: Web Servers
Nessus Plugin ID: 11234 ()
Bugtraq ID: 5806