|
Family: CGI abuses --> Category: infos
ASP source using %20 trick Vulnerability Scan
Vulnerability Scan Summary downloads the source of ASP scripts
Detailed Explanation for this Vulnerability Test
It is possible to get the source code of the remote
ASP scripts by appending %20 at the end
of the request (like GET /default.asp%20)
ASP source code usually contains sensitive information such
as logins and passwords.
Solution : install all the latest security patches
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|