Login Start Free Trial Login Start Free Trial
 

HawkScan Test Info for WSDL File Discovery

HawkScan Test Info for WSDL File Discovery

WSDL File Discovery

Reference

Plugin Id: 90030

Remediation

  1. Restrict WSDL access: Remove publicly accessible WSDL files or implement proper access controls.
  2. Review exposed information: Audit WSDL content to ensure no sensitive operations, parameters, or internal details are exposed.
  3. Use authentication: Require authentication to access web service documentation and WSDL files.
  4. Sanitize WSDL content: Remove any internal comments, development endpoints, or sensitive metadata from production WSDL files.
  5. Monitor access: Log and monitor access to WSDL files for potential reconnaissance activities.

About

WSDL (Web Services Description Language) file discovery occurs when web service definition files are publicly accessible, exposing detailed information about web service operations, parameters, data types, endpoints, and internal service architecture that could assist attackers in reconnaissance.

Risks

Low WSDL file exposure provides attackers with detailed information about web service structure, operations, and parameters, facilitating targeted attacks against specific web service methods and potential abuse of service functionality.