Raptor Firewall 6.5 HTTP Proxy Detection

Medium Nessus Plugin ID 10730

Synopsis

A firewall / HTTP proxy is running in front of the remote web server.

Description

Raptor FW 6.5 appears to be running in front of the remote web server. By sending an invalid HTTP request to a web server behind the Raptor firewall, the HTTP proxy itself will respond. The server banner of Raptor FW version 6.5 is always 'Simple, Secure Web Server 1.1'. A remote attacker could use this information to mount further attacks.

Solution

Patch httpd / httpd.exe by hand.

Plugin Details

Severity: Medium

ID: 10730

File Name: raptor_detect.nasl

Version: $Revision: 1.20 $

Type: remote

Family: Firewalls

Published: 2001/08/23

Modified: 2012/09/27

Dependencies: 10582, 34474, 17975

Risk Information

Risk Factor: Medium

CVSSv2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Vulnerability Information

CPE: cpe:/a:symantec:raptor_firewall