Deutsche Version (DE_DE)
English version (EN_US)
Test Methods ( Detailed Overview )
Here is a list of every test performed by Web Scan Service.
.NET VB File DownloadRemediation Task
Remove fileWASC ClassificationInformation Disclosure: Information LeakageAffected ProductsThis issue may affect different types of productsTechnical DescriptionA .NET VB file contains sensitive information about the application, and may even contain usernames and passwords. By revealing such a file, an attacker can get the information he needs in order to plan further attacks, such as source code disclosure, on the server.
Sample Exploit:
http://[SERVER]/FILENAME.vbFix RecommendationThe problem is that the server's mapping is not configured correctly. Map the VB extention to the correct handler.
Technical DescriptionA .NET VB file contains sensitive information about the application, and may even contain usernames and passwords. By revealing such a file, an attacker can get the information he needs in order to plan further attacks, such as source code disclosure, on the server.
Sample Exploit:
http://[SERVER]/FILENAME.vbFix RecommendationThe problem is that the server's mapping is not configured correctly. Map the VB extention to the correct handler.
The problem is that the server's mapping is not configured correctly. Map the VB extention to the correct handler.
