cve/2003/CVE-2003-0105.md

### [CVE-2003-0105](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0105)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

ServerMask 2.2 and earlier does not obfuscate (1) ETag, (2) HTTP Status Message, or (3) Allow HTTP responses, which could tell remote attackers that the web server is an IIS server.

### POC

#### Reference
- http://marc.info/?l=bugtraq&m=109215441332682&w=2

#### Github
No PoCs found on GitHub currently.
Update Sun May 26 14:27:04 CEST 2024 2024-05-26 14:27:05 +02:00			`### [CVE-2003-0105](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0105)`
			`![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)`
			`![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)`

			`### Description`

			`ServerMask 2.2 and earlier does not obfuscate (1) ETag, (2) HTTP Status Message, or (3) Allow HTTP responses, which could tell remote attackers that the web server is an IIS server.`

			`### POC`

			`#### Reference`
			`- http://marc.info/?l=bugtraq&m=109215441332682&w=2`

			`#### Github`
			`No PoCs found on GitHub currently.`