Asp.Net Version disclosure

Description

At the time of sending the request, the server displays the Asp.Net Version being used. Other details about the technology of the server could be exposed as well.

An attacker could exploit known vulnerabilities of the same version if it was not updated.

Recommendation

To prevent this vulnerability from happening, remove the header that displays the version or display a generic message.
Apply the following changes to the web.config file to prevent ASP.NET version disclosure.

References

https://cwe.mitre.org/data/definitions/200.html

< Return to all Vulnerabilities

What is a CWE ?

Similar to the article written on CVEs, in this article we will answer the questions :What is CWE ? and, what is the difference between

Read More »

The Dark Web

Let’s talk about the darker and more mysterious side of the internet, also known as The Dark Web. You’ve probably heard about it, whether it’s

Read More »

The Cloud

I’m pretty sure there isn’t a single adult in the world who hasn’t at least heard of The Cloud. Explaining “The Cloud” in 2022 may

Read More »

HTTP VS. HTTPS

You must have once wondered what HTTP means and what is the difference between that ugly word to HTTPS, and if not, then please read

Read More »