Security risks related to the nlserver.exe :: HTTP DELETE Method Enabled and HTTP OPTIONS Method Enabled

Description

Issue:

A user had previously reported a security concern related to the nlserver.exe running on port 8080.

The description is as below:

Exe location: “D:\Adobe\Adobe Campaign v6\bin\nlserver.exe.”
port: 8080
Risk reported for: HTTP DELETE Method Enabled and HTTP OPTIONS Method Enabled.
Remediation: Disable the HTTP OPTIONS method and Disable the HTTP DELETE method

Note: This is applicable for On-Prem setup only

Resolution

The HTTP OPTIONS and DELETE methods can be disabled. To disable these methods, you can follow the steps mentioned in https://protonts.wordpress.com/2013/08/15/how-to-disable-http-options-method/.

On this page