AnsweredAssumed Answered

QID:62041 About detection logic

Question asked by kuhara on Sep 8, 2011
Latest reply on Sep 26, 2011 by kuhara

QID:62041:APSIS Pound Remote Format String Vulnerability

 

The server is installed the ’pound-2.1-1.xfwd’.

This vulnerability is detected in case of under the 'Pound 1.5', but this server is detected.

 

The RESULT item of scan results is described 'No results available', why does this vulnerability detect?

 

The detection logic of potential vulnerability is often measured by application name or version.

But does this vulnerability detect by exploit like published by Security Focus?

Outcomes