CA Embedded Entitlements Manager - Server Header Information Leakage

Document ID : KB000099869
Last Modified Date : 01/06/2018
Show Technical Document Details
Issue:
When using a proxy interceptor, it is possible to gain information related to the technology and the version of the web server within the HTTP response headers/body. This endangers the application because any attacker while browsing the site (even before login) will know what type of server the application sits on and what version it's running. From here the attacker only needs to research what publicly posted vulnerabilities have been reported against that version of that server, and use that to exploit the application and even possibly other applications also hosted on that server depending on how severe the exploit is.
Resolution:
Technology and version information is not available in headers returned by EEM 12.6


 
Additional Information:
Here are all the GET results for https://server_name:5250 and https://server_name:5250/spin/eiam 

EEM Intercept test 

For https://server_name:5250 

GET / HTTP/1.1 
Host: server_name:5250 
Cache-Control: max-age=0 
User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.108 Safari/537.36 
Upgrade-Insecure-Requests: 1 
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8 
Accept-Encoding: gzip, deflate 
Accept-Language: en-US,en;q=0.9 
Connection: close 

For https://server_name:5250/spin/eiam 

GET /spin/eiam HTTP/1.1 
Host: server_name:5250 
Connection: close 
User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.108 Safari/537.36 
Upgrade-Insecure-Requests: 1 
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8 
Accept-Encoding: gzip, deflate 
Accept-Language: en-US,en;q=0.9 
Cookie: spin=8cd06ecc56015c5ad378ed66f9c806-5b05a01f-22eecd0-7 

GET /spin/eiam/eiam_logout.csp%3Ferror%3D HTTP/1.1 
Host: server_name:5250 
Connection: close 
User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.108 Safari/537.36 
Upgrade-Insecure-Requests: 1 
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8 
Accept-Encoding: gzip, deflate 
Accept-Language: en-US,en;q=0.9 
Cookie: spin=f57d3ade190a03a66b1885868aeac81b-5b05a01f-22eecd0-8 

GET /spin/eiam/eiam.csp HTTP/1.1 
Host: server_name:5250 
Connection: close 
User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.108 Safari/537.36 
Upgrade-Insecure-Requests: 1 
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8 
Accept-Encoding: gzip, deflate 
Accept-Language: en-US,en;q=0.9 
Cookie: spin= 

GET /spin/eiam/scripts/cookies.js HTTP/1.1 
Host: server_name:5250 
Connection: close 
If-Modified-Since: Wed, 23 May 2018 18:07:00 GMT 
User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.108 Safari/537.36 
Accept: */* 
Referer: https://server_name:5250/spin/eiam/eiam.csp 
Accept-Encoding: gzip, deflate 
Accept-Language: en-US,en;q=0.9 
Cookie: spin=8fa0c1e0152a095f76816aa320d058f-5b05a01f-22eecd0-9