Summary
Requesting the URI /server-info gives information about your Apache configuration.
Solution
If you don't use this feature, comment the appropriate section in your httpd.conf file. If you really need it, limit its access to the administrator's machine.
Severity
Classification
-
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related Vulnerabilities
- Adobe Reader Cross-Site Scripting & Denial of Service Vulnerabilities (Windows)
- Apple Safari Webkit Multiple Vulnerabilities - May13 (Mac OS X)
- Apple Safari Secure Cookie Security Bypass Vulnerability (Windows)
- Adobe Reader Cross-Site Scripting & Denial of Service Vulnerabilities (Linux)
- Apple Safari JavaScript Implementation Information Disclosure Vulnerability (Windows)