Recently I scanned a Cayman DSL router and was suprised to see numerous warnings in Nessus for cgi scripts that were supposedly accessible. I am wondering how this is possible due to the fact that the router is not running any webserver on it. A port scan revealed that, in fact, port 80 was not even open..
The following were a few of the supposed existant url's... guestbook.cgi dvwssr.dll glimpse.cgi guestbook.pl Exair search.asp Any ideas on why these tests succeeded? Thank you, --TK
