Family: Web Servers --> Category: infos
Directory listing through WebDAV Vulnerability Scan
Vulnerability Scan Summary
Checks the presence of WebDAV
Detailed Explanation for this Vulnerability Test
The WebDAV module can be used to obtain a listing of the
remote web server directories even if they have a default
page such as index.html.
This allows a possible hacker to gain valuable information about the
directory structure of the remote host and could reveal the
existence of files which are not intended to be visible.
Solution : disable the WebDAV module, or restrict its access to
authenticated and trusted clients.
Threat Level: Low
Click HERE for more information and discussions on this network vulnerability scan.