Asp.Net Version disclosure

Description

At the time of sending the request, the server displays the Asp.Net Version being used. Other details about the technology of the server could be exposed as well.

An attacker could exploit known vulnerabilities of the same version if it was not updated.

Recommendation

To prevent this vulnerability from happening, remove the header that displays the version or display a generic message.
Apply the following changes to the web.config file to prevent ASP.NET version disclosure.

References

https://cwe.mitre.org/data/definitions/200.html

< Return to all Vulnerabilities