Summary
This web server supports S-HTTP, a cryptographic layer that was defined in 1999 by RFC 2660.
S-HTTP has never been widely implemented and you should use HTTPS instead.
As rare or obsolete code is often badly tested, it would be safer to use another server or disable this layer somehow.
Severity
Classification
-
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related Vulnerabilities
- Apple iTunes Multiple Vulnerabilities - Apr10
- Apple Safari Web Script Execution Vulnerabilites - June09
- Apple Safari Webcore Webkit 'XSSAuditor.cpp' XSS Vulnerability (Mac OS X)
- Apple Safari Multiple Memory Corruption Vulnerabilities-01 Aug14 (Mac OS X)
- Adobe Reader Plugin Signature Bypass Vulnerability (Mac OS X)