|
Family: Web Servers --> Category: infos
IIS : Directory listing through WebDAV Vulnerability Scan
Vulnerability Scan Summary Checks the presence of the Index Server service
Detailed Explanation for this Vulnerability Test
It is possible to retrieve the listing of the remote
directories accessible via HTTP, rather than their index.html,
using the Index Server service which provides WebDav capabilities
to this server.
This problem allows a possible hacker to gain more knowledge
about the remote host, and may make him aware of hidden
HTML files.
Solution : disable the Index Server service, or
see http://www.microsoft.com/technet/support/kb.asp?ID=272079
Threat Level: Low
Click HERE for more information and discussions on this network vulnerability scan.
|