Table of Contents
Application Fingerprint Vulnerability
If a security flaw is discovered in your application, specific application fingerprints such as “powered by” buttons can allow insecure installations to be discovered via search engines or scanning attacks.
A header or cookie name specific to the application could be used as part of a CGI scanner.
Exploits
- A specific filename could be used via google to detect your application. (For example a spammer looking for the comments posting file.)
- Be on alert for a worm or virus that uses this vulnerability to scan for the fingerprint of your application to spread.