CVE ID:	CVE-2001-0731
Description:	Apache 1.3.20 with Multiviews enabled allows remote attackers to view directory contents and bypass the index page via a URL containing the "M=D" query string.
Test IDs:	1.3.6.1.4.1.25623.1.0.10704
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2001-0731 Bugtraq: 20010709 How Google indexed a file with no external link (Google Search) http://www.securityfocus.com/archive/1/20010709214744.A28765@brasscannon.net http://frontal2.mandriva.com/security/advisories?name=MDKSA-2001:077 RedHat Security Advisories: RHSA-2001:126 http://www.redhat.com/support/errata/RHSA-2001-126.html RedHat Security Advisories: RHSA-2001:164 http://www.redhat.com/support/errata/RHSA-2001-164.html BugTraq ID: 3009 http://www.securityfocus.com/bid/3009 XForce ISS Database: apache-multiviews-directory-listing(8275) http://xforce.iss.net/xforce/xfdb/8275 SGI Security Advisory: 20020301-01-P ftp://patches.sgi.com/support/free/security/advisories/20020301-01-P

New User Registration Email: UserID: Passwd: Please email me your monthly newsletters, informing the latest services, improvements & surveys. Please email me a vulnerability test announcement whenever a new test is added.     Privacy

Registered User Login   UserID:     Passwd:     Forgot userid or passwd? Email/Userid: