系统弱点扫描
Nessus Report http (80/tcp) The remote host is running a version of PHP which is older than 5.0.3 or4.3.10.The remote version of this software is vulnerable to various securityissues which may, under certain circumstances, to execute arbitrary codeon the remote host, provided that we can pass arbitrary data to somefunctions.See Also : /ChangeLog-5.php#5.0.3 Solution: Upgrade to PHP 5.0.3 or 4.3.10 Risk Factor : HighCVE : CVE-2004-1018, CVE-2004-1019, CVE-2004-1020, CVE-2004-1063, CVE-2004-1064, CVE-2004-1065BID : 11964, 11981, 11992, 12045Other references : OSVDB:12410Plugin ID : 15973 Nessus Report http (80/tcp) The remote host appears to be running a version of Apache which is older than 1.3.29There are several flaws in this version, which may allow an attacker to possibly execute arbitrary code through mod_alias and mod_rewrite.You should upgrade to 1.3.29 or newer.Note that Nessus solely relied on the version numberof the remote server to issue this warning. This mightbe a false positive Solution: Upgrade to version 1.3.29 See Also : /dist/httpd/Announcement.html Risk Factor : HighCVE : CVE-2003-0542BID : 8911Other references : OSVDB:2733, OSVDB:7611Plugin ID : 11915 Nessus Report http (80/tcp) We could DELETE the file /puttest1.htmlon your web serverThis allows an attacker to destroy some of your pages Description: Synopsis :The remote web server allows PUT and/or DELETE method(s). Solution: Disable PUT and/or DELETE method(s) in the web server configuration. Risk Factor : HighBID : 12141Other references : OSVDB:397, OSVDB:5646, OWASP:OWASP-CM-001Plugin ID : 10498 Nessus Report http (80/tcp) This host is running the Microsoft IIS web server. This web server contains a configuration flaw that allows the retrieval of the global.asa file. This file may contain sensitive information such as database passwords, internal addresses, and web application configuration options. This vulnerability may
您可能关注的文档
最近下载
- 2025-2030中国防晒衣行业发展分析及投资风险预测研究报告.docx VIP
- 2025至2030中国防晒衣行业市场发展分析及竞争格局与投资风险报告.docx VIP
- 甘蔗削皮切断机设计.doc VIP
- 旋片式真空泵的原理与结构汇总.docx VIP
- 新人教版数学六年级下册第二单元《百分数(二)》教材解读1公开课教案教学设计课件资料.pptx VIP
- 鸿蒙HarmonyOS开发者高级认证练习题附答案(二).docx
- 2026年幼儿园中、高级教师职称考试(综合素质)历年参考题库含答案详解.docx VIP
- 台湾新代数控系统SYNTECCNC应用手册V103.pdf VIP
- 规范操作风险--防范银行案件——解析银行业案件监管依据及预防控制.doc VIP
- 交通运输部规划研究院中国多式联运发展报告202450页.pdf VIP
原创力文档

文档评论(0)