Professional Documents
Culture Documents
196.203.190.22
80
HTTP
N/A
Apache/2.2.15 (Red Hat)
Caucho Resin
N/A
4. Scan Statistics
Avg Response Time
Avg Response Size
Total Scan Time
Number of Spidered Links
Number of Cookies
Number of Javascript objects
Number of HTML Comments
Number of e-mails
Number of Broken Pages
Number of hidden fields
Number of Objects Leaked
4430
275
311 mins (18690 secs)
0
0
0
0
0
0
0
0
5. Policy Details
Policy Name
Policy Details
Applied Rules
Web Resources Spider and Analysis
Server Vulnerabilities Assessment
Directory Brute-force Discovery
File & Directory Exposure Attacks
Cross-site Scripting Attacks
SQL Injection Attacks
Memory Fault Attacks
Parameter Tampering Attacks
Signature-based HTTP Attacks
Information Leakage Search
Protocol Compliance Check
Status
3. Application Objects
1. Cookies
Cookie
2. E-mails
E-mail
Count
3. Broken Pages
Page
Reference
4. Hidden Fields
Field name & value
5. Information Leakage
Name
Value
6. Web Forms
4. Vulnerabilities
1. Web Server Exposure
Oracle Single Sign-On Login Page Authentication Credential Disclosure Vulnerability
CVE : CVE-2007BID : 24215
OSVDB : 37050
High Level
3304
Target Server : http://196.203.190.22:80/
URL : /
Comments
It has been reported that Oracle Single Sign-On login form is prone to an authentication
credential disclosure vulnerability that that may allow remote attackers to disclose
OSVDB : None
4. Confidentiality Exposure
No vulnerabilities.
5. Cookie Exposure
No vulnerabilities.