|Title:||Apache HTTP Server Directory Listing|
|Summary:||By making a request to the Apache HTTP server ending in '?M=A' it is sometimes possible to obtain a; directory listing even if an index.html file is present.;; It appears that it is possible to retrieve a directory listing from the root of the Apache; HTTP server being tested. However, this could be because there is no 'index.html' or similar; default file present.|
By making a request to the Apache HTTP server ending in '?M=A' it is sometimes possible to obtain a
directory listing even if an index.html file is present.
It appears that it is possible to retrieve a directory listing from the root of the Apache
HTTP server being tested. However, this could be because there is no 'index.html' or similar
default file present.
Unless it is required, turn off Indexing by making the appropriate changes to your
BugTraq ID: 3009|
Common Vulnerability Exposure (CVE) ID: CVE-2001-0731
Bugtraq: 20010709 How Google indexed a file with no external link (Google Search)
SGI Security Advisory: 20020301-01-P
XForce ISS Database: apache-multiviews-directory-listing(8275)
|Copyright||Copyright (C) 2001 Matt Moore|
|This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.