HTTP Port is Active

Vulnerability Description

Brief description: Port 80 is active.

Full description: Port 80 is active. This is caused by a running program accepting connections on port 80, most likely a web server. This is a security risk if it violates policy or the system administrator is unaware of the server.

Components: server

Systems: any

Effect(s) of exploiting: The effect depends on the rights and functionality of the server listening at port 80. If a web server, remote users can access files available to the web server

Detecting the hole:

1. Without a login on the suspect system, connect to port 80 using TCP and/or UDP. If it responds, the port is active.
2. With a login, look on the system to see what process is bound to port 80.

Fixing the hole:

1. If a server is running and it should not be running, turn it off.

Other information: This is not actually a security problem by itself. It may be one in the context of site policy, however.

Keywords

httpd

Cataloguing

PA Classification(s):

RISOS Classification(s):

DCS Classification(s):

CVE Number: CAN-1999-0633 -- The HTTP/WWW service is running.

Exploit Information

Attack:

Related Information

Advisories:

Related Vulnerabilities:

Reportage

Reporting: in ( )

Revision Number 1

1. Patrick LeBlanc (7/3/2000):