StrongHold < 3.0 build 3015 System File Disclosure

medium Nessus Network Monitor Plugin ID 1473

Synopsis

The remote web server (RedHat StrongHold Web server) allows anyone to disclose sensitive system files, including httpd.conf, by requesting the URLs /stronghold-info and /stronghold-status.

Description

The remote web server (RedHat StrongHold Web server) allows anyone to disclose sensitive system files, including httpd.conf, by requesting the URLs /stronghold-info and /stronghold-status. An attacker may use this flaw to gain a better intimate knowledge about the remote host and make more focused attacks.

Solution

Upgrade to version 3.0 build 3015 or higher.

Plugin Details

Severity: Medium

ID: 1473

Family: Web Servers

Published: 8/20/2004

Updated: 3/6/2019

Nessus ID: 10803

Risk Information

VPR

Risk Factor: Low

Score: 3.7

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

CVSS v3

Risk Factor: Medium

Base Score: 4

Temporal Score: 4

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Temporal Vector: CVSS:3.0/E:H/RL:U/RC:C

Vulnerability Information

CPE: cpe:/a:redhat:stronghold

Reference Information

CVE: CVE-2001-0868

BID: 3577