Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | |||
Test ID: | 10526 |
Category: | CGI abuses |
Title: | IIS : Directory listing through WebDAV |
Summary: | NOSUMMARY |
Description: | Description: It is possible to retrieve the listing of the remote directories accessible via HTTP, rather than their index.html, using the Index Server service which provides WebDav capabilities to this server. This problem allows an attacker to gain more knowledge about the remote host, and may make him aware of hidden HTML files. Solution : disable the Index Server service, or see http://www.microsoft.com/technet/support/kb.asp?ID=272079 Risk factor : Low |
Cross-Ref: |
BugTraq ID: 1756 Common Vulnerability Exposure (CVE) ID: CVE-2000-0951 @stake Security Advisory: A100400-1 http://www.atstake.com/research/advisories/2000/a100400-1.txt http://www.securityfocus.com/bid/1756 Microsoft Knowledge Base article: Q272079 http://www.microsoft.com/technet/support/kb.asp?ID=272079 XForce ISS Database: iis-index-dir-traverse(5335) https://exchange.xforce.ibmcloud.com/vulnerabilities/5335 |
Copyright | This script is Copyright (C) 2000 Renaud Deraison |
This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |