CVE-2003-0105 Information

Description

ServerMask 2.2 and earlier does not obfuscate (1) ETag (2) HTTP Status Message or (3) Allow HTTP responses which could tell remote attackers that the web server is an IIS server.

Reference

http://marc.info/?l=bugtraq&m=109215441332682&w=2 http://www.corsaire.com/advisories/c030224-001.txt https://exchange.xforce.ibmcloud.com/vulnerabilities/16947