|
Family: CGI abuses --> Category: infos
Novell Web Server NDS Tree Browsing Vulnerability Scan
Vulnerability Scan Summary Novell Web Server NDS Tree Browsing
Detailed Explanation for this Vulnerability Test
The Novell Web Server default ndsobj.nlm CGI (LCGI) was
detected. This CGI allows browsing of the NDS Tree without any need for
authentication.
Gaining access to the NDS Tree reveals sensitive information to a possible hacker.
Solution: Configure your Novell Web Server to block access to this CGI,
or delete it if you do not use it.
For More Information: http://www.securiteam.com/securitynews/5XP0L1555W.html
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|