|
|
Family: CGI abuses --> Category: attack
Xerver < 4.20 Multiple Vulnerabilities Vulnerability Scan
Vulnerability Scan Summary
Checks for multiple vulnerabilities in Xerver < 4.20
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote web server is affected by multiple flaws.
Description :
The remote host is running Xerver, an open-source FTP and web server
written in Java.
The version of Xerver installed on the remote host suffers from
several vulnerabilities that can be used by a possible hacker to reveal the
contents of directories as well as the source of scripts and HTML
pages. In addition, it is prone to a generic cross-site scripting
flaw.
See also :
http://securitytracker.com/alerts/2005/Oct/1015079.html
Solution :
Upgrade to Xerver 4.20 or later as that is rumoured to address the
issue.
Threat Level:
Low / CVSS Base Score : 1.9
(AV:R/AC:H/Au:NR/C:N/I:P/A:N/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|
