On Nov 9, 2005, at 12:20 PM, Dariusz Swierzewski wrote:
I am very puzzled - we had an external scan done by a third party
company on 10/21/05 of our web server and then today I did an
external scan against the same server. The first result from the
below lists a risk factor of medium (done by third party security
firm)
My scan done this morning, did show the same thing but as an
informational and not a warning.
Can someone please explain to me why this would be so, if we did
not make any changes to that server.
The plugin description has been changed with the new format. And the
CVSS score is pretty low for this vulnerability (0) so, we changed to
security_warning to security_note to reflect the CVSS score.
It could happen with other plugins too when we change the description
and add the CVSS score, the risk level can change.
Nicolas
_______________________________________________
Nessus mailing list
[email protected]
http://mail.nessus.org/mailman/listinfo/nessus
