[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
CCE
view XML

CCE-90794-9

Platform: rhel7,centos7Date: (C)2017-06-29   (M)2022-10-10



Disable Web Server Configuration Display The 'info' module creates a web page illustrating the configuration of the web server. This can create an unnecessary security leak and should be disabled. If its functionality is unnecessary, comment out the module: '#LoadModule info_module modules/mod_info.so' If there is a critical need for this module, use the 'Location' directive to provide an access control list to restrict access to the information.


Parameter:


Technical Mechanism:

Minimizing the number of loadable modules available to the web server reduces risk by limiting the capabilities allowed by the web server. Fix: No Remediation Info

CCSS Severity:CCSS Metrics:
CCSS Score : Attack Vector:
Exploit Score: Attack Complexity:
Impact Score: Privileges Required:
Severity: User Interaction:
Vector: Scope:
 Confidentiality:
 Integrity:
 Availability:
  

References:
Resource IdReference
SCAP Repo OVAL Definitionoval:org.secpod.oval:def:31201
SCAP Repo OVAL Definitionoval:org.secpod.oval:def:30478
SCAP Repo OVAL Definitionoval:org.secpod.oval:def:31201
SCAP Repo OVAL Definitionoval:org.secpod.oval:def:30478


OVAL    2
oval:org.secpod.oval:def:31201
oval:org.secpod.oval:def:30478

© SecPod Technologies