VCEM-67-000025 - ESX Agent Manager must not enable support for TRACE requests.

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version


'Trace' is a technique for a user to request internal information about Tomcat. This is useful during product development but should not be enabled in production. Allowing an attacker to conduct a Trace operation against ESX Agent Manager will expose information that would be useful to perform a more targeted attack. ESX Agent Manager provides the 'allowTrace' parameter to disable responding to Trace requests.


Navigate to and open:


Navigate to and locate:


Remove the 'allowTrace='true'' setting.

See Also

Item Details

References: CAT|II, CCI|CCI-001312, Rule-ID|SV-239396r717040_rule, STIG-ID|VCEM-67-000025, Vuln-ID|V-239396

Plugin: Unix

Control ID: c306f3a7d507d515ed8cc4bfa9a0e209684cb6fd156038c6b8813f6796915bdc