|
|
Vulnerability Assessment & Network Security Forums |
|||||||||
|
If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery. Home >> Browse Vulnerability Assessment Database >> Web Servers >> Zope Installation Path Disclosure Vulnerability Assessment Details
|
Zope Installation Path Disclosure |
||
|
Checks for Zope installation directory Detailed Explanation for this Vulnerability Assessment Summary : The remote web server contains an application server that is prone to information disclosure. Description : There is a minor security problem in all releases of Zope prior to version 2.5.1b1 - they reveal the installation path when an invalid XML RPC request is sent. See also : http://collector.zope.org/Zope/359 Solution : Upgrade to Zope 2.5.1b1 / 2.6.0b1 or later. Network Security Threat Level: Low / CVSS Base Score : 2 (AV:R/AC:L/Au:NR/C:P/A:N/I:N/B:N) Networks Security ID: 5806 Vulnerability Assessment Copyright: This script is Copyright (C) 2003 Michel Arboi |
||
|
Wireless Networking, WiFi |
|
||
|
No Discussions have been posted on this vulnerability. |