False Positive:BadBlue Directory Traversal Vulnerability
Michel Arboi
mikhail at nessus.org
Fri Aug 6 15:52:54 EDT 2004
On Fri Aug 06 2004 at 16:21, Jack Polimer wrote:
> I'm running Apache 1.3.29 and the "BadBlue Directory
> Traversal Vulnerability" plugin popped positive.
Does you server returns 404 for an unknown page?
You could try to force "qc" to 1 in the script; just comment three lines:
qc=1;
#n = string("www/no404/", port);
#r = get_kb_item(n);
#if (r) qc=0;
If the problem remains, generate a trace and send it to me.
nasl -T trace_file badblue_directory_traversal.nasl -t target_machine
More information about the Nessus
mailing list