Family: Web Servers --> Category: infos
IIS perl.exe problem Vulnerability Scan
Vulnerability Scan Summary
Attempts to find the location of the remote web root
Detailed Explanation for this Vulnerability Test
It was possible to obtain the physical location of a
virtual web directory of this host by issuing the command :
GET /scripts/no-such-file.pl HTTP/1.0
A possible hacker may use this flaw to gain more information about the remote
host, and hence make more focused attacks.
Solution : Use perlis.dll instead of perl.exe.
Threat Level: Low
Click HERE for more information and discussions on this network vulnerability scan.