On Wed Dec 06 2006 at 23:01, ablesambaker wrote: > I have a device (windows 2000) that when scanned always comes up with the > Apache [PID 11041 or 11042]vulnerability yet the workstation does not have > Apache installed.
That's odd, because script 11041 (apache_Tomcat_DOS_Device_XSS.nasl) checks the banner. [Script 11042 only filters false alerts if HMAP was run, which is currently the case if exeperimental plugins are enabled] I'd bet that you have an instance of Tomcat running somewhere. _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
