During QUALYS Web Application Scanning of User System – Integration layer, if one is facing the below error during vulnerability scan, then follow the steps mentioned in the solution. ID and Error 150018 Connection Error Occurred During Web Application Scan Threat The following are some of the possible reasons for the timeouts or connection errors: …
Continue reading “Connection Error Occurred During Web Application Scan”
During QUALYS Web Application Scanning of Oracle Fusion (Integration Layer), if one is facing the below security vulnerability, then follow the steps mentioned in the solution. ID and Name 150079 and Slow HTTP Headers Threat The web application is possibly vulnerable to “slow HTTP headers” Denial of Service (DoS) attack. This is an application-level DoS, …
During QUALYS Web Application Scanning of User System – Oracle Fusion (Integration layer), if one is facing the below security vulnerabilities, then follow the steps mentioned in the solution. Vulnerability 1: ID and Name 150202 and Missing header: X-Content-Type-Options Threat The X-Content-Type-Options response header is not present. WAS reports missing X-Content-Type-Options header on each crawled …
During QUALYS Web Application Scanning of user system like Oracle Fusion (Integration layer), if one is facing the below security vulnerability, then follow the steps mentioned in the solution. ID and Name 150123 and Cookie Does Not Contain The “HTTPOnly” Attribute Threat The cookie does not contain the “HTTPOnly” attribute. Impact Cookies without the “HTTPOnly” …
Continue reading “Cookie Does Not Contain HTTPOnly Attribute Security Vulnerability”
During QUALYS Web Application Scanning of user system like Oracle Fusion (Integration layer), if one is facing the below security vulnerability, then follow the steps mentioned in the solution. ID and Name 150081 and X-Frame-Options header is not set Threat The X-Frame-Options header is not set in the HTTP response, which may lead to a …
Continue reading “X-Frame-Options Header Security Vulnerability”
How to export the Web Application Scan Report in Qualys? Step by Step Guide: Login to Qualys Portal and select Web Application Scanning on the right-hand side dropdown. Then Click on Scans and then again click on Scan List. Select the checkbox against your scan name which has got completed successfully Click on Report Now, …
Why Selenium Script in QUALYS Web Application Scan? The selenium script is an alternative way to authenticate the desired web application URL. In a scenario where your typical web application fails authentication due to continuous bombardment of WAS then one can use Selenium script as it gives a provision to wait for the stipulated timeframe …
How to create Web Application for Web Application Scan in Qualys? Login to Qualys Portal and select Web Application Scanning on the right-hand side dropdown. Then Click on Web Applications and then again click on Web Applications. Finally, click on New Web Application – as highlighted in yellow in the below picture Select Blank if …
How to create Authentication Record for Web Application Scan in Qualys?Steps Login to Qualys Portal and select Web Application Scanning on the right-hand side dropdown. Then Click on Web Applications and then click on Authentication. Finally, click on New Record – as highlighted in yellow in the below picture Enter the desired authentication name and …
Continue reading “Create Authentication Record – WAS Qualys”
How to create Option Profile for Web Application Scan in Qualys?Steps Login to Qualys Portal and select Web Application Scanning on the right-hand side dropdown. Then Click on Scans and then click on Option Profiles. Finally, click on New Profile – as highlighted in yellow in the below picture Enter the desired Name for your …
SOA Solutions