|Title:||/doc/packages directory browsable ?|
|Summary:||Is /doc/packages browseable ?|
The /doc/packages directory is browsable.
The content of this directory gives to an attacker instant
knowledge about the versions of the packages installed
on this host, and will help him to focus his attack.
Solution : Use access restrictions for the /doc directory.
If you use Apache you might use this in your access.conf:
deny from all
allow from localhost
Risk factor : High
BugTraq ID: 1707|
Common Vulnerability Exposure (CVE) ID: CVE-2000-1016
Bugtraq: 20000921 httpd.conf in Suse 6.4 (Google Search)
XForce ISS Database: suse-installed-packages-exposed(5276)
|Copyright||This script is Copyright (C) 2000 Renaud Deraison|
|This is only one of 58962 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.