mod_perl Apache::Status Info Disclosure
Medium Nessus Plugin ID 36100
SynopsisThe remote web server discloses information about its status.
DescriptionIt is possible to obtain an overview of the Perl interpreter embedded in the remote Apache server. This overview includes information such as loaded modules, Perl configuration, and settings of environment variables.
SolutionEnsure that access to Apache::Status / Apache2::Status is limited to valid users / hosts or, if it's not needed, update Apache's configuration file to disable use of this handler.