Virtual hosts found

OWASP 2013-A5 OWASP 2017-A6 OWASP 2021-A5 CWE-200 WASC-13 WSTG-INPV-17

Virtual hosts are used to host multiple domain names on a single server. Servers host different domains but share the same certificate. It is a vulnerability.The attacker that controls the DNS can redirect the first domain to the second server. If this server does not reject the unrecognised request, then it is meant for the other domain. Thus arises a risk that the two domains may be confused.


The impact include:-

  • The hosting server wont respond to request.

Mitigation / Precaution

The solution for this vulnerability include:-

  • Make sure all staging and supporting subdomains are secured properly. It should not have public access. Make this available to whitelisted IPs.
  • Try to prevent Virtual Host Fallback.
  • Authenticate Port in Host Header.
  • Prevent Cross-Virtual Host Resumption.
  • Prevent SSL Downgrading.

Latest Articles