|
|
Family: CGI abuses --> Category: infos
HFS+ 'data fork' file access Vulnerability Scan
Vulnerability Scan Summary
downloads the source of a remote script
Detailed Explanation for this Vulnerability Test
The remote host seems to be running Mac OS X or Mac OS X Server.
There is a flaw in the remote web server which allows a possible hacker
to obtain the source code of any given file on the remote web
server by reading it through its data fork directly. A possible hacker
may exploit this flaw to obtain the source code of remote scripts.
Solution : install all the latest Apple Security Patches
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|
