Security vulnerability flag on Epagent port

book

Article ID: 130130

calendar_today

Updated On:

Products

APP PERF MANAGEMENT CA Application Performance Management Agent (APM / Wily / Introscope) CUSTOMER EXPERIENCE MANAGER INTROSCOPE

Issue/Introduction

We got security vulnerability reported on 9080 port on which EPAgent is listening.
stating http trace/track methods are enabled.
EPAgent HTTP TRACE / TRACK Methods Allowed security violation
Can you please let us know how to disable these methods in order to remedy the vulnerability?

Environment

Release:
Component: APMAGT

Resolution

This Security vulnerability has been fixed in APM 10.3 EPAgent and above.