Test Kennung:	1.3.6.1.4.1.25623.1.0.103122
Kategorie:	Web Servers
Titel:	Apache HTTP Server ETag Header Information Disclosure Weakness
Zusammenfassung:	A weakness has been discovered in the Apache HTTP Server; if configured to use the FileETag directive.
Beschreibung:	Summary: A weakness has been discovered in the Apache HTTP Server if configured to use the FileETag directive. Vulnerability Impact: Exploitation of this issue may provide an attacker with information that may be used to launch further attacks against a target network. Solution: OpenBSD has released a patch that addresses this issue. Inode numbers returned from the server are now encoded using a private hash to avoid the release of sensitive information. Novell has released TID10090670 to advise users to apply the available workaround of disabling the directive in the configuration file for Apache releases on NetWare. Please see the attached Technical Information Document for further details. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2003-1418 BugTraq ID: 6939 http://www.securityfocus.com/bid/6939 BugTraq ID: 6943 http://www.securityfocus.com/bid/6943 OpenBSD Security Advisory: [3.2] 008: SECURITY FIX: February 25, 2003 http://www.openbsd.org/errata32.html XForce ISS Database: apache-mime-information-disclosure(11438) https://exchange.xforce.ibmcloud.com/vulnerabilities/11438
Copyright	Copyright (C) 2011 Greenbone Networks GmbH

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.