Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
Version Disclosure (IIS) - Vulnerability Database

Version Disclosure (IIS)

Description

The HTTP responses returned by this web application include a header named Server. The value of this header includes the version of Microsoft IIS server.

Remediation

Microsoft IIS should be configured to remove unwanted HTTP response headers from the response. Consult web references for more information.

References

Remove Unwanted HTTP Response Headers

Related Vulnerabilities

Trace.axd Detected High
Common tags: Information Disclosure Configuration
Error page path disclosure Low
Common tags: Information Disclosure Configuration
JBoss JMX Console Unrestricted Access High
Common tags: Information Disclosure Configuration
JBoss Web Console JMX Invoker High
Common tags: Information Disclosure Configuration
Tomcat status page Low
Common tags: Information Disclosure Configuration

Severity

Low

Classification

CWE-200
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Information Disclosure
Configuration