Summary
The 'printenv' CGI is installed.
printenv normally returns all environment variables.
This gives an attacker valuable information about the configuration of your web server.
Solution
Remove it from /cgi-bin.
Severity
Classification
-
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N
Related Vulnerabilities
- Apache Struts2/XWork Remote Command Execution Vulnerability
- Apache CouchDB Cross Site Request Forgery Vulnerability
- AdaptCMS 'init.php' Remote File Include Vulnerability
- Apache Struts Showcase Multiple Persistence Cross-Site Scripting Vulnerabilities
- Apache Tomcat Cross-Site Scripting and Security Bypass Vulnerabilities