I am running a website on a Windows Server 2008. My client ran a PCI Audit and Failed.
This is the failing point:
Error: TCP, port 80, http
scripting Solution: Contact the vendor for a patch or upgrade. Risk Factor: Medium / CVSS Base Score : 4.3 (CVSS2#AV:N/AC:M/Au:N/C:N/
I:P/A:N) CVE : CVE-2002-1060, CVE-2003-1543, CVE-2005-2453, CVE-2006-1681 BID : 5305, 7344, 7353, 8037, 14473, 17408 Other references : OSVDB:4989, OSVDB:18525, OSVDB:24469, OSVDB:42314 [More]
I have not been able to fix the issue. The website is Build with DotNetNuke 5.
Windows Server 2008 Standard (32-bit)
Service Pack 1
How can i fix the problem so I can pass the PCI Audit?