Family: Web Servers --> Category: infos
Apache Directory Listing Vulnerability Scan
Vulnerability Scan Summary
Checks to see if Apache will provide a directory listing
Detailed Explanation for this Vulnerability Test
By making a request to the Apache web server ending in '?M=A' it is sometimes possible to obtain a
directory listing even if an index.html file is present.
It appears that it is possible to retrieve a directory listing from the root of the Apache
web server being tested. However, this could be because there is no 'index.html' or similar
default file present.
Unless it is required, turn off Indexing by making the appropriate changes to your
Threat Level: Low
Click HERE for more information and discussions on this network vulnerability scan.