On Mon, Jul 18, 2005 at 03:48:56PM +0200, peceka wrote: > The remote web server seems to be vulnerable to a format string attack > on HTTP 1.0 header value. ...
> But i'm using mod_security which has blocked this and shows forbidden > (403) page. > > So how to treat this? As false-positive? Can you tell me what exactly is being returned, including the response headers? George -- [EMAIL PROTECTED] _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
