A Firewall-1 web server is running on this port and serves web authentication requests. This service allows remote attackers to gather usernames and passwords through a brute force attack. Older versions of the Firewall-1 product allowed verifying usernames prior to checking their passwords, allowing attackers to easily bruteforce a valid list of usernames.

if you do not use this service, disable it