/vulndb/Virtual Host Discovery

Virtual Hosting is a method that allows a single server to serve resources for multiple web application. The presence of Virtual hosts usually indicate that the target application is sharing resources with other applications, i.e. shared-hosting environment.

An attacker may use a vulnerability in one virtual host to compromise an application on another virtual host due to the shared context between all applications hosted on the same server.

Solution

While shared-hosting environments are cheeper and sometimes easier to maintain, if the target application serves a critical function, it is recommended to move it to a dedicated host on its own.

References

http://en.wikipedia.org/wiki/Virtual_hosting http://www.gnucitizen.org/blog/exegesis-of-virtual-hosts-hacking/