|
Family: Web Servers --> Category: infos
Netscape FastTrack 'get' Vulnerability Scan
Vulnerability Scan Summary 'get / ' gives a directory listing
Detailed Explanation for this Vulnerability Test
When the remote web server is
issued a request with a lower-case 'get', it will return
a directory listing even if a default page such as index.html is
present.
Example :
get / HTTP/1.0
Will return a listing of the root directory.
This allows a possible hacker to gain valuable information about the
directory structure of the remote host and could reveal the
existence of files which are not intended to be visible.
Solution : Upgrade your server to the latest version.
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|