Dangerous HTTP Method PUT Allowed
Web Servers contains a flaw that may allow a remote attacker to upload arbitrary files. The issue is triggered when the HTTP method 'PUT' is allowed. It is possible that the flaw may allow a remote attacker to upload arbitrary files resulting in a loss of integrity.
Currently, there are no known upgrades or patches to correct this issue. It is possible to correct the flaw by implementing the following workaround: Disable the PUT method if it is not essential for your site.
Low Attack Complexity, Partial Confidentiality Impact, Partial Integrity Impact, Partial Availability Impact
Nikto / OSVDB
Copyright © 2010 ControlScan. All Rights Reserved.