Stompy (the session stomper) Vulnerability Scanner Detection

Info Nessus Network Monitor Plugin ID 3895

Synopsis

The remote client is scanning with the Stompy HTTP session scanner.

Description

The remote client is scanning with the Stompy HTTP session scanner. This tool scans web servers and detects applications that use predictable 'Session Identifier' algorithms.

Solution

Ensure that such scanning is in alignment with corporate policies and guidelines.

See Also

http://lcamtuf.coredump.cx

Plugin Details

Severity: Info

ID: 3895

Family: Policy

Published: 2007/01/28

Modified: 2016/12/12

Risk Information

Risk Factor: Info