Netscape /.perf accessible

Summary

Requesting the URI /.perf gives information about the currently running Netscape/iPlanet web server.

Solution

If you don't use this feature, server monitoring should be disabled in the magnus.conf file or web server admin.

Severity

Medium Severity

Classification

CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities