3 matches found
EUVD-2003-0101
Malware in sbrugna...
U.S. Dept Of Defense: Publicly Accessible CDN Endpoint Exposing XML Metadata (including ETag)
A publicly accessible CDN endpoint was found that returned raw XML listing of stored objects, including metadata such as Key, LastModified, Size, StorageClass, and ETag. The ETag values, which can contain object hashes, were exposed publicly. This configuration allowed reconnaissance of the...
CVE-2003-0105
ServerMask 2.2 and earlier does not obfuscate 1 ETag, 2 HTTP Status Message, or 3 Allow HTTP responses, which could tell remote attackers that the web server is an IIS server...