Deutsche Version (DE_DE)
English version (EN_US)
Test Methods ( Detailed Overview )
Here is a list of every test performed by Web Scan Service.
.NET CS File DownloadRemediation Task
Remove fileWASC ClassificationInformation Disclosure: Information LeakageAffected ProductsThis issue may affect different types of productsTechnical DescriptionA .NET CS file contains sensitive information about the application, and may even contain usernames and passwords. By revealing such a file, an attacker can get the information he needs in order to plan further attacks, such as source code disclosure, on the server.
Sample Exploit:
http://[SERVER]/FILENAME.csFix RecommendationThe problem is that the server's mapping isn't configured correctly. Map the CS extention to the correct handler.
Technical DescriptionA .NET CS file contains sensitive information about the application, and may even contain usernames and passwords. By revealing such a file, an attacker can get the information he needs in order to plan further attacks, such as source code disclosure, on the server.
Sample Exploit:
http://[SERVER]/FILENAME.csFix RecommendationThe problem is that the server's mapping isn't configured correctly. Map the CS extention to the correct handler.
The problem is that the server's mapping isn't configured correctly. Map the CS extention to the correct handler.
