iPlanet Web Server Enterprise Edition URL-encoded Host: Information Disclosure
Medium Nessus Plugin ID 11856
SynopsisThe remote web server is affected by an information disclosure vulnerability.
DescriptionAccording to its self reported version number, the remote iPlanet web server is affected by an information disclosure vulnerability wherein a remote user can retrieve sensitive data from memory allocation pools or cause a denial of service against the server.
*** Since Nessus solely relied on the banner of this server,
*** (and iPlanet 4 does not include the SP level in the banner),
*** to issue this alert, this may be a false positive.
SolutionUpdate to iPlanet 4.1 SP7 or later.