Vulnerability Scanning Solutions, LLC.
Our Process
What We Scan For
Sample Report
Client List
Contact Us
What We Scan For
Family: CGI abuses --> Category: infos

Stronghold Swish Vulnerability Scan

Vulnerability Scan Summary
Searches for the existence of cgi-bin/search

Detailed Explanation for this Vulnerability Test

An information disclosure vulnerability was reported in a
sample script provided with Red Hat's Stronghold web server.
A remote user can acertain the web root directory path.

A remote user can send a request to the Stronghold sample script
swish to cause the script to reveal the full path to the webroot directory.

Apparently, swish may also display system-specific information in the
HTML returned by the script

Solution : remove it
Threat Level: Low

Click HERE for more information and discussions on this network vulnerability scan.


P.O. Box 827051

Pembroke Pines, FL 33082-7051

Vulnerability Scanning Solutions, LLC.