Solved

Want to avoid/secure Web Server Sample Pages which can provide more data about Server/Services running.

Posted on 2009-05-04
2
192 Views
Last Modified: 2012-05-06
Numerous, known vulnerabilities are associated with Web site sample pages, including information gathering, buffer overflows, and/or disruption of services. A malicious user could use these vulnerabilities to instigate destructive actions against the host device.
Evidence:https://xx.xx.xx.xx/favicon.ico
Note:XS is used for IP
I want to remove this vulnerability...?
0
Comment
Question by:Brijeshk9
2 Comments
 
LVL 14

Accepted Solution

by:
agriesser earned 500 total points
ID: 24302436
If your scanner found the favicon.ico file to be an evidence for a vulnerability, I'm wondering what the resaon for that is.

The favicon.ico file is an image used for displaying left to your URL address bar in your browser, f.ex. when you look at experts exchange, left to the url bar where it says "http://www.experts-exchange.com" there 's a orange X symbol, that's the favicon.ico of this website.

Mostly every website has a favicon.ico file, so I don't see why this would be a security issue...
Is there any more information you can get us from your scanner, like the reason why it found this file to be harmful or anything like that?

Of course, it might be that someone replaced your favicon.ico file with something else, so make sure that it is still the file that was originally uploaded and not something else.
0
 

Author Closing Comment

by:Brijeshk9
ID: 31577882
Thnaks..!
0

Featured Post

VMware Disaster Recovery and Data Protection

In this expert guide, you’ll learn about the components of a Modern Data Center. You will use cases for the value-added capabilities of Veeam®, including combining backup and replication for VMware disaster recovery and using replication for data center migration.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If your site has a few sections that need to be secure when data is transmitted between the server and local computer, such as a /order/ section for ordering or /customer/ which contains customer data, etc it would of course be recommended to secure…
If you are a web developer, you would be aware of the <iframe> tag in HTML. The <iframe> stands for inline frame and is used to embed another document within the current HTML document. The embedded document could be even another website.
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
Learn how to get help with Linux/Unix bash shell commands. Use help to read help documents for built in bash shell commands.: Use man to interface with the online reference manuals for shell commands.: Use man to search man pages for unknown command…

867 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now