Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:10518
Category:CGI abuses
Title:/doc/packages directory browsable ?
Summary:NOSUMMARY
Description:Description:
The /doc/packages directory is browsable.
The content of this directory gives to an attacker instant
knowledge about the versions of the packages installed
on this host, and will help him to focus his attack.

Solution : Use access restrictions for the /doc directory.
If you use Apache you might use this in your access.conf:


AllowOverride None
order deny,allow
deny from all
allow from localhost


Risk factor : High

Cross-Ref: BugTraq ID: 1707
Common Vulnerability Exposure (CVE) ID: CVE-2000-1016
http://www.securityfocus.com/bid/1707
Bugtraq: 20000921 httpd.conf in Suse 6.4 (Google Search)
http://www.securityfocus.com/archive/1/84360
XForce ISS Database: suse-installed-packages-exposed(5276)
https://exchange.xforce.ibmcloud.com/vulnerabilities/5276
CopyrightThis script is Copyright (C) 2000 Renaud Deraison

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2021 E-Soft Inc. All rights reserved.