Netscape / iPlanet .perf Remote Information Disclosure

Medium Nessus Plugin ID 11220


The remote web server is affected by an information disclosure vulnerability.


Requesting the URI /.perf gives information about the currently running Netscape/iPlanet web server.


If you don't use this feature, server monitoring should be disabled in the magnus.conf file or web server admin.

See Also

Plugin Details

Severity: Medium

ID: 11220

File Name: iplanet_perf.nasl

Version: 1.14

Type: remote

Family: Web Servers

Published: 2003/02/06

Updated: 2020/06/12

Dependencies: 10107, 17975

Risk Information

Risk Factor: Medium

CVSS v2.0

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Vulnerability Information

Required KB Items: www/netscape-commerce, www/netscape-fasttrack, www/iplanet