Netscape / iPlanet .perf Remote Information Disclosure

Medium Nessus Plugin ID 11220

Synopsis

The remote web server is affected by an information disclosure vulnerability.

Description

Requesting the URI /.perf gives information about the currently running Netscape/iPlanet web server.

Solution

If you don't use this feature, server monitoring should be disabled in the magnus.conf file or web server admin.

See Also

http://www.nessus.org/u?bedb7504

Plugin Details

Severity: Medium

ID: 11220

File Name: iplanet_perf.nasl

Version: 1.13

Type: remote

Family: Web Servers

Published: 2003/02/06

Modified: 2018/08/22

Dependencies: 10107, 17975

Risk Information

Risk Factor: Medium

CVSS v2.0

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Vulnerability Information

Required KB Items: www/netscape-commerce, www/netscape-fasttrack, www/iplanet