Summary
We detected the remote web server as running
Tripwire for web pages under the Apache web server. This software allows attackers to gather sensitive information about your server configuration.
Solution
Modify the banner used by Apache by adding the option 'ServerTokens' to 'ProductOnly' in httpd.conf
Additional information can be found at:
http://www.securiteam.com/securitynews/5RP0L1540K.html (Web Server banner removal guide)
Severity
Classification
-
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N
Related Vulnerabilities
- Apple Safari Webcore Webkit 'XSSAuditor.cpp' XSS Vulnerability (Windows)
- Aardvark Topsites Multiple Vulnerabilities
- Apple Safari Secure Cookie Security Bypass Vulnerability (Windows)
- Adobe Reader 'file://' URL Information Disclosure Vulnerability Feb07 (Linux)
- Adobe Reader Plugin Signature Bypass Vulnerability (Windows)