This script is Copyright (C) 2004-2013 Tenable Network Security, Inc.
The remote web server is affected by an information disclosure
The remote host is running Microsoft IIS with what appears to be a
a vulnerable disclosure of cookie usage. That is, when sent a
Cookie with the '=' character, Microsoft IIS will either respond
with an error (if actually processing the cookie via a specific
asp page) or disclose information of the .inc file used. This can
be used to map applications which are processing cookies.
See also :
Configure IIS to return custom error pages.
Risk factor :
Medium / CVSS Base Score : 5.0
Family: Web Servers
Nessus Plugin ID: 12229 ()
Upgrade to Nessus Professional today!
Start your free Nessus Cloud trial now!
Begin Free Trial
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.