AI Score
Confidence
Low
EPSS
Percentile
76.8%
ServerMask 2.2 and earlier does not obfuscate (1) ETag, (2) HTTP Status Message, or (3) Allow HTTP responses, which could tell remote attackers that the web server is an IIS server.
marc.info/?l=bugtraq&m=109215441332682&w=2
www.corsaire.com/advisories/c030224-001.txt
exchange.xforce.ibmcloud.com/vulnerabilities/16947