Nessus Plugin #10402
Plugin Index
Note: This file has been created from a
downloaded version of the Nessus Plugins
from
http://www.nessus.org/.
Therefore, the information here can be outdated.
CVSWeb detection
- Family:
- CGI abuses
- Category:
- infos
- Copyright:
- This script is Copyright (C) 2000 SecuriTeam
- Summary:
- Checks if CVSWeb is present and gets its version
- Version:
- $Revision: 1.15 $
- Cve_id:
- -
- Bugtraq_id:
- -
- Xrefs:
- -
- Description:
CVSWeb is used by hosts to share programming source
code. Some web sites are misconfigured and allow access
to their sensitive source code without any password protection.
This plugin tries to detect the presence of a CVSWeb CGI and
when it finds it, it tries to obtain its version.
Risk factor : Low
Solution : Password protect the CGI if unauthorized access isn't wanted
Generiert am 27.04.2005 um 18:49:54 Uhr.