ServerMask 2.2 and earlier does not obfuscate (1) ETag, (2) HTTP Status Message, or (3) Allow HTTP responses, which could tell remote attackers that the web server is an IIS server.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2004-08-18T04:00:00

Updated: 2024-08-08T01:43:35.309Z

Reserved: 2003-02-26T00:00:00

Link: CVE-2003-0105

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2004-09-28T04:00:00.000

Modified: 2024-11-20T23:43:58.077

Link: CVE-2003-0105

cve-icon Redhat

No data.