Automate Recon and scanning process with Vidoc. All security teams in one place
The "Encompass CM1 Home Page - Detect" module is a test case designed to detect misconfigurations in the Encompass CM1 home page. Encompass CM1 is a software that this module targets. The severity of this module is classified as informative.
The impact of this module is to identify any misconfigurations present in the Encompass CM1 home page. By detecting these misconfigurations, it helps ensure that the Encompass CM1 software is properly configured and secure.
The "Encompass CM1 Home Page - Detect" module works by performing HTTP requests and applying matching conditions to identify misconfigurations. It checks for specific words in the body and header of the HTTP response, as well as the HTTP status code. For example, it looks for the presence of "Encompass CM1 Home Page" and "DIAGNOSTIC LINKS:" in the body, "text/html" in the header, and a status code of 200. If all these conditions are met, the module considers it a match and reports the vulnerability.
Here is an example of an HTTP request that the module might send:
GET / HTTP/1.1 Host: example.com User-Agent: Vidoc-Scanner Accept: text/html
The matching conditions used by this module are:- Check for the presence of "Encompass CM1 Home Page" and "DIAGNOSTIC LINKS:" in the body - Check for the presence of "text/html" in the header - Check for a status code of 200
By applying these matching conditions, the module can effectively detect misconfigurations in the Encompass CM1 home page.