Vulnerabilities > CVE-2003-0105 - Unspecified vulnerability in Port80 Software Servermask
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
ServerMask 2.2 and earlier does not obfuscate (1) ETag, (2) HTTP Status Message, or (3) Allow HTTP responses, which could tell remote attackers that the web server is an IIS server.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Packetstorm
data source | https://packetstormsecurity.com/files/download/34005/c030224-001.txt |
id | PACKETSTORM:34005 |
last seen | 2016-12-05 |
published | 2004-08-10 |
reporter | Corsaire |
source | https://packetstormsecurity.com/files/34005/Corsaire-Security-Advisory-2003-02-24.1.html |
title | Corsaire Security Advisory 2003-02-24.1 |