我的NESSUS扫描报告我的主机中存在漏洞,例如:
> Vulnerabilities by PluginExpand All | Collapse All
> **11801 (1) - HTTP Method Remote Format String-**
> **Synopsis**
> It is possible to execute code on the remote host through the web server.
> DescriptionThe remote web server seems to be vulnerable to a format string attack on the method name. An attacker might use this
> flaw to make it crash or even execute arbitrary code on this host.
> **Solution**
> Upgrade your software or contact your vendor and inform him of this vulnerability.
我希望该工具提供详细的http请求,该请求可能会使我的http服务器崩溃,但报告中未包括该请求。 因此,我很难调查/纠正此漏洞。
请帮助建议我如何确定所使用的http请求可能会使服务器崩溃? NESSUS工具能否提供此信息?