Vulnerability   
Search   
    Search 191973 CVE descriptions
and 86218 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.108976
Category:Web application abuses
Title:Backup File Scanner (HTTP) - Reliable Detection Reporting
Summary:The script reports backup files left on the web server.;; Notes:;; - 'Reliable Detection' means that a file was detected based on a strict (regex) and reliable pattern matching the; response of the remote web server when a file was requested.;; - As the VT 'Backup File Scanner (HTTP)' (OID: 1.3.6.1.4.1.25623.1.0.140853) might run into a timeout the actual; reporting of this vulnerability takes place in this VT instead. The script preference 'Report timeout' allows; you to configure if such a timeout is reported.
Description:Summary:
The script reports backup files left on the web server.

Notes:

- 'Reliable Detection' means that a file was detected based on a strict (regex) and reliable pattern matching the
response of the remote web server when a file was requested.

- As the VT 'Backup File Scanner (HTTP)' (OID: 1.3.6.1.4.1.25623.1.0.140853) might run into a timeout the actual
reporting of this vulnerability takes place in this VT instead. The script preference 'Report timeout' allows
you to configure if such a timeout is reported.

Vulnerability Impact:
Based on the information provided in this files an attacker might be able to
gather sensitive information stored in these files.

Solution:
Delete the backup files.

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:N/A:N

CopyrightCopyright (C) 2020 Greenbone Networks GmbH

This is only one of 86218 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2020 E-Soft Inc. All rights reserved.