|
Family: CGI abuses --> Category: infos
WebActive world readable log file Vulnerability Scan
Vulnerability Scan Summary Requests /active.log
Detailed Explanation for this Vulnerability Test
It is possible to obtain the remote WebActive logfile by
requesting the file /active.log
A possible hacker may use this to obtain valuable information about
your site, such as who visits it and how popular it is.
Solution : use another web server, as WebActive is not maintained.
If you are using WindowsNT, then remove read access to this
file.
Threat Level: Low
Click HERE for more information and discussions on this network vulnerability scan.
|