|
Family: CGI abuses --> Category: attack
Unprotected SiteScope Service Vulnerability Scan
Vulnerability Scan Summary Unprotected SiteScope Service
Detailed Explanation for this Vulnerability Test
The SiteScope web service has no password set. A possible hacker
who can connect to this server could view usernames and
passwords stored in the preferences section or reconfigure
the service.
Solution: Make sure that a password is set in the configuration
for this service. Depending on where this server is located,
you may want to restrict access by IP address in addition to
username.
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|