Summary
The remote host is running the 'Snif' CGI suite. There is a vulnerability in it which may allow an attacker to insert a malicious HTML and/or Javascript snipet in the response returned to a third party user (this problem is known as a cross site scripting bug).
Solution
None at this time - disable this CGI suite
Severity
Classification
-
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N
Related Vulnerabilities
- Apache Struts CookBook/Examples Multiple Cross-Site Scripting Vulnerabilities
- Apache Tomcat HTTP BIO Connector Information Disclosure Vulnerability
- Admidio get_file.php Remote File Disclosure Vulnerability
- Apache Solr XML External Entity(XXE) Vulnerability-01 Jan-14
- Apache CouchDB Cross Site Request Forgery Vulnerability